Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Firefox 37 fixes critical flaws, adds OneCRL certificate revocation mechanism

Firefox 37 fixes critical flaws, adds OneCRL certificate revocation mechanism

2015/04/01

Softpedia - (International) Mozilla released an update for its Firefox browser that addresses several critical vulnerabilities, including two type confusion flaws, two memory corruption crashes, a user-after-free error, and memory safety hazards that could have allowed attackers to run arbitrary code on users' systems. Firefox version 37 also includes OneCRL, a feature that allows developers to update the list of revoked certificates without pushing a new application update.

Source: http://news.softpedia.com/news/Firefox-37-Fixes-Critical-Flaws-Adds-OneCRL-Certificate-Revocation-Mechanism-477314.shtml

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:23:54