Mozilla 72 and Bug Fixing At the Beginning of Year
- January 24, 2020
- Hiba Sulaiman
Mozilla fixes high-severity bugs in its latest releases – Firefox 72 and Firefox ESR 68.4 while rolling out a major privacy feature.
Mozilla’s latest browser versions include Firefox 72.0.1 and Firefox ESR 68.4.1. Firefox ESR browser is the Extended Support Release version designed for mass deployments. In this latest Firefox browser update, Mozilla has fixed a crucial vulnerability that was actively being exploited. While reporting to a security bulletin, Mozilla stated that the company was aware of targeted attacks that were exploiting the flaw. And a successful attack could allow attackers to abuse the affected systems.
Mozilla announced this update after launching the latest Firefox 72 browser. This browser was released by introducing new privacy features and patching ESR 68.4.1.
Firefox and ESR Bug Fixes
Mozilla tackled 5 high-severity flaws, which included 4 moderate bugs and 1 low-risk bug in Firefox 72. 3 of these high-severity issues were related to the memory-corruption issues. These flaws included:
- CVE-2019-17015 that is; memory corruption in parent process during new content process initialization on Windows. In this case, attackers may exploit the security hole, which exists only in the Windows systems.
- CVE-2019-17017 which is a type confusion vulnerability in the XPCVariant.cpp. An attacker can gain remote access to execute arbitrary code on the target system.
Protection from Browser Fingerprinting