What's new

Firefox 14.0.1 Includes Critical Security Updates


Site Administrator, Microsoft MVP, Security Analyst
Staff member
Feb 22, 2012
Upstate, NY
Mozilla Firefox 14 Includes Critical Security Updates

Firefox 14 was sent to the release channel today by Mozilla. Included in the update are five (5) critical, four (4) high, and five (5) moderate security updates.

Based on the extensive list of security updates, it is recommended that the update be applied as soon as possible.
[h=3]Security Updates Fixed in Firefox 14[/h]
  • MFSA 2012-56 Code execution through javascript: URLs
  • MFSA 2012-55 feed: URLs with an innerURI inherit security context of page
  • MFSA 2012-53 Content Security Policy 1.0 implementation errors cause data leakage
  • MFSA 2012-52 JSDependentString::undepend string conversion results in memory corruption
  • MFSA 2012-51 X-Frame-Options header ignored when duplicated
  • MFSA 2012-50 Out of bounds read in QCMS
  • MFSA 2012-49 Same-compartment Security Wrappers can be bypassed
  • MFSA 2012-48 use-after-free in nsGlobalWindow::pageHidden
  • MFSA 2012-47 Improper filtering of javascript in HTML feed-view
  • MFSA 2012-46 XSS through data: URLs
  • MFSA 2012-45 Spoofing issue with location
  • MFSA 2012-44 Gecko memory corruption
  • MFSA 2012-43 Incorrect URL displayed in addressbar through drag and drop
  • MFSA 2012-42 Miscellaneous memory safety hazards (rv:14.0/ rv:10.0.6)