News: 0000816794

  ARM Give a man a fire and he's warm for a day, but set fire to him and he's warm for the rest of his life (Terry Pratchett, Jingo)

Firefox 74.0.1

([Development] Apr 3, 2020 21:23 UTC (Fri) (ris))


Firefox 74.0.1 has been [1]released with [2]two security fixes . CVE-2020-6819 is a use-after-free when running the nsDocShell destructor and CVE-2020-6820 is a use-after-free when handling a ReadableStream. In both cases there have been targeted attacks in the wild abusing these flaws. These issues have also been fixed in Firefox ESR 68.6.1.



[1] https://www.mozilla.org/en-US/firefox/74.0.1/releasenotes/

[2] https://www.mozilla.org/en-US/security/advisories/mfsa2020-11/

A famous Lisp Hacker noticed an Undergraduate sitting in front of a Xerox
1108, trying to edit a complex Klone network via a browser. Wanting to
help, the Hacker clicked one of the nodes in the network with the mouse,
and asked "what do you see?" Very earnestly, the Undergraduate replied "I
see a cursor." The Hacker then quickly pressed the boot toggle at the back
of the keyboard, while simultaneously hitting the Undergraduate over the head
with a thick Interlisp Manual. The Undergraduate was then Enlightened.