Mozilla Firefox and Google Chrome, have patched bugs and beefed up se

  1. Josey Wales's Avatar
    Posts : 17,371
    Win 10 RS5 64 Bit
       25 Jan 2018 #1

    Mozilla Firefox and Google Chrome, have patched bugs and beefed up se

    Firefox, Chrome Patch Vulnerabilities, Add Security Features | Threatpost | The first stop for security news

    Click image for larger version. 

Name:	firefoxchromepatch-680x400.jpg 
Views:	25 
Size:	68.0 KB 
ID:	174187

    Both Mozilla and Google have updated their browsers this week and have added important security fixes along with bolstering user privacy and safety.
    Google tackled 53 security fixes on Wednesday with the debut of Chrome 64 (version 64.0.3282.119) for Windows, Mac and Linux. Only three of the vulnerabilities patched are rated high with 13 ranked medium in severity. Most notable is a patch to protect against the web-exploitable Spectre CPU vulnerability. Google did not offer an in-depth analysis of this patch, only stating “this release contains additional mitigations against speculative side-channel attack techniques.”

    One of high-severity vulnerabilities (CVE-2018-6031) is tied to Google’s problem-plagued Chrome default PDF viewer, called PDFium. Two additional vulnerabilities rated high were also patched. One (CVE-2018-6032) is only described as a “same origin bypass in shared worker” vulnerability and the other (CVE-2018-6033) is a “race when opening downloaded files” bug.
    In addition to fixes, Google also introduced security features with Chrome 64, originally part of the beta version of the browser, introduced last month. Those features include a “stronger” pop-up blocker that targets swatting down “links to third-party websites disguised as play buttons or other site controls, or transparent overlays on websites that capture all clicks and open new tabs or windows,” Google said.

    Google has also introduced a developer Abusive Experiences Report tool, available in the Google Search Console, that allows site owners to check if any “abusive experiences” have been found on their sites.
    On Thursday, Google also introduced a new ad-muting feature, unrelated to security, which should be popular with users. This feature allows users to “mute” ads that track users around the web. For example, if a user browses Ray-Ban sunglasses at a merchant’s site, there is a good chance ads for Ray-Ban sunglasses will stalk users on their phone, apps and desktop browser.
    Google used to allow user to mute tracking ads in the browser context. But, its new Mute This Ad feature now extends the muting feature across Google, on websites, and in apps – so long as the ad originates from a Google ad partner. In the coming months, Google said it plans to extend the feature to YouTube and Gmail.
    Mozilla Adds Always-On Ban on Web Tracking
    Mozilla fixed two critical bugs in Firefox with the release of Firefox 58 Quantum, introduced on Tuesday. Also patched were eight vulnerabilities rated high. One of the most serious bugs is a critical “memory safety” flaw (CVE-2018-5089) that “with enough effort” could allow a hacker exploit the vulnerability and run arbitrary code on targeted devices.
    A second critical use-after-free Firefox bug was also patched by Mozilla Firefox. According to Mozilla’s Security Advisory, the bug (CVE-2018-5091) is tied to the browser’s DTMF feature. DTMF, or Dual-tone multi-frequency signaling, describes a Firefox component that uses “touch tones” within the browser’s WebRTC framework that can be used to initiate calls to a legacy telephone network that rely on DTMF.
    “A use-after-free vulnerability can occur during WebRTC connections when interacting with the DTMF timers. This results in a potentially exploitable crash,” according to the Security Advisory.
    The patches also apply to the Firefox Extended Support Release (ESR) 52.6 browser, also updated Tuesday.
    The latest version of Firefox 58 Quantum (for Windows, Linux and macOS) introduces a bevy of performance enhancements, building off Firefox’s original introduction of the Quantum browser in November. Part of those speed enhancements are tied to banning advertisers from collecting data on users while they browse the internet. Mozilla says ad tracking cuts browser speeds in half.
    “When you browse from site to site, you’re often followed by scripts that collect data on where you’ve been and what you’ve done. These scripts can eat up your data, slow down your internet experience and make you see ads for things you may or may not want to admit you looked for when you went down one of those ‘suggested items’ rabbit holes. We found that when Private Browsing with Tracking Protection is on, Firefox is significantly faster than Chrome, even in Incognito mode,” Mozilla said.
    To speed up Firefox 58, you can now block ad-tracking in Firefox all the time, not just in Firefox Private Browsing mode.
      My ComputerSystem Spec

  2. Josey Wales's Avatar
    Posts : 17,371
    Win 10 RS5 64 Bit
    Thread Starter
       25 Jan 2018 #2

    If anyone is running Firefox 59 BETA 3 there is an update for it at MajorGeeks

    Download Mozilla Firefox 59.0b4 / 60.0a1 Nightly - MajorGeeks
      My ComputerSystem Spec


Related Threads
Why does google chrome use so much RAM compared to firefox? Discuss.
I really like chrome bcus its very fast. however the appearance is so blurry. meanwhile firefox is clear af. thats why i never chrome anymore. Firefox: 118656 Chrome: 118657
Hi, I am running windows 10 on the latest update, recently i downloaded a programme that turned out to be a virus and after getting rid of the virus, being a trojan running a UC Browser some stuff are still left, i used windows defender and...
I have had problems with Edge opening my Facebook etc very slowly. I even downloaded Firefox to see if it was faster. I prefer Chrome. It is much faster than Edge or Firefox. However, there is something weird happening. When I start my computer and...
Does anybody have a solution to this problem. When I open a couple of new tabs in Google Chrome ,Firefox or Internet Explorer it freezes my computer completely. It started with the latest Windows 10 update. 1. In Event Viewer - System I have this...
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 17:38.
Find Us