Update (Oct 11, 2012)
- An update to Firefox for Windows, Mac and Linux was released at 12pm PT on Oct 11. Users will be automatically updated and new downloads via http://www.mozilla.org/firefox/new/ will receive the updated version (16.0.1).
- A fix for the Android version of Firefox was released at 9pm PT on Oct 10.
Issue:
Mozilla is aware of a security vulnerability in the current release version of Firefox (version 16). We are actively working on a fix and plan to ship updates tomorrow. Firefox version 15 is unaffected.
Impact:
The vulnerability could allow a malicious site to potentially determine which websites users have visited and have access to the URL or URL parameters. At this time we have no indication that this vulnerability is currently being exploited in the wild.
Status:
Firefox 16 has been temporarily removed from the current installer page and users will automatically be upgraded to the new version as soon as it becomes available. As a precaution, users can downgrade to version 15.0.1 by following these instructions [http://www.mozilla.org/firefox/new/]. Alternatively, users can wait until our patches are issued and automatically applied to address the vulnerability.
Michael Coates
Director of Security Assurance
Shailesh
wrote on
::
The oldie
wrote on
:
Bryan Price
wrote on
:
Jesse Ruderman
wrote on
::
msth67
wrote on
:
pieroxy
wrote on
:
Seen
wrote on
:
mcoates
wrote on
:
A pissed off user.
wrote on
:
Dave
wrote on
:
John Meloche
wrote on
::
Slightly Sarcastic
wrote on
:
gs
wrote on
:
gharlane
wrote on
:
ffuser
wrote on
:
Aron
wrote on
:
Daniel Veditz
wrote on
:
Ben Reaves
wrote on
:
zbravo
wrote on
:
mr peabody
wrote on
:
Jim
wrote on
:
Jim Russell
wrote on
:
Scott
wrote on
:
Another Pissed Off User
wrote on
:
Another Pissed Off User
wrote on
:
Bart Benus
wrote on
:
john o neill
wrote on
:
Jesse Ruderman
wrote on
::
Security Code is blank, no image
wrote on
:
Security Code is still blank, still no image
wrote on
:
Firefox Fanatic
wrote on
:
Cylon
wrote on
:
Markus
wrote on
:
josh
wrote on
:
mcoates
wrote on
:
Jonau
wrote on
:
pieroxy
wrote on
:
TubeLugs
wrote on
:
Mase
wrote on
:
Daniel Veditz
wrote on
:
Mase
wrote on
:
Daniel Veditz
wrote on
:
Mase
wrote on
:
hillbilleter
wrote on
:
Rafael
wrote on
:
Raj
wrote on
:
João Dantas
wrote on
::
Matthew Atkinson
wrote on
:
David
wrote on
:
puru singh
wrote on
:
Aunty
wrote on
:
Mystery Man
wrote on
:
Don
wrote on
:
Rod F
wrote on
::
Dave Steckel
wrote on
:
Robert Kann
wrote on
: