Firefox 16 pulled over security risk.

[satrow]

One day after the release of Firefox 16, Mozilla said it has "temporarily removed" the latest version of its browser because of a security flaw that the company is trying to fix as quickly as possible. The unusual precaution suggests the flaw is a serious one, but there are no reports of it being exploited.

"The vulnerability could allow a malicious site to potentially determine which websites users have visited and have access to the URL or URL parameters," Mozilla Director of Security Assurance Michael Coates wrote. "At this time we have no indication that this vulnerability is currently being exploited in the wild."

Mozilla plans to ship updates tomorrow. But "as a precaution," Mozilla said users may consider downgrading to version 15.0.1, and pointed them to the 15.0.1 download page. "Alternatively, users can wait until our patches are issued and automatically applied to address the vulnerability," Mozilla wrote. Firefox 15 is not affected by the vulnerability.

http://arstechnica.com/security/201...fox-16-from-download-site-over-security-risk/

 

[Corrine]

The update to 16.0.1 has been released: Mozilla Firefox Updated to 16.0.1 Due to Security Vulnerability

I was running into the "websockets crash" with version 16 that has hopefully been fixed according to MFSA 2012-88.