Login

Please login to Techworld.com

Forgot password?
Need your new account confirmation email resent?
Forgot email?

Not a member yet?

Register for a Techworld Account and enjoy unlimited access to our extensive white paper library and exclusive Enterprise multi-user software trials. Account members can also comment on articles and access best practices guides.

Security

Top How-Tos / Advice articles

New version of Firefox due next week

Another fix to fix the fix.

By Gregg Keizer, Computerworld | Published: 11:38, 25 October 2007

Mozilla will rush another version of Firefox to users as early as next week, in order to fix five bugs it introduced in its latest security update.

According to the company’s user interface designer, Firefox 2.0.0.8 patched ten vulnerabilities, including three critical flaws, but unfortunately it also shipped with five regression bugs - problems unintentionally introduced when code was changed to plug other holes.

“Most users won't see any difference or experience any problems,” said Mike Beltzner of Mozilla in a posting to the company’s development centre blog. “We’re working fast to understand and fix these problems, and will shortly be issuing a 2.0.0.9 update to address them.”

According to notes from a weekly Mozilla meeting on Firefox, the regression reports began accumulating over the weekend. Firefox 2.0.0.8 was posted for download last week. Three of the five problems were limited to Windows, but two page rendering issues affected all versions of the browser, including those for Mac OS X and Linux.

The Windows-specific bugs included one that disables Firefox extensions after updating. The problem doesn’t affect every copy of 2.0.0.8 on Windows - one user said it had hit just one of his four PCs - and can be remedied by deleting a trio of files from the hard drive. Programmers are still working on a fix.

Another under the microscope, however, has no workaround. Firefox 2.0.0.8 crashes on start up on some Windows XP and Vista systems, a listing in Mozilla’s bug reporting database said, and although developers quickly came up with a test to reproduce the crash, they seemed unsure whether they were on the right track. “This seems to have been fixed on trunk (regarding the test case) between 2007-08-21 and 2007-08-22,” said Martijn Wargers.

“Hmm. I wonder whether we’re hitting EM restart weirdness here or something,” replied another developer, Boris Zbarsky.

Beltzner said Mozilla hoped to put a new Firefox, version 2.0.0.9, into the pipeline next week.

This isn't the first time that the open-source developer has scrambled to set things right. Mozilla patched Firefox twice in July to plug URI holes. And in March, it released Firefox 2.0.0.3 and 1.5.0.11 to fix several regressions that slipped into the prior versions, which hit the street the month before.

Send to a friend

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.