Mozilla on Sept. 17 released its latest open-source Firefox browser update for both Android as well as desktop versions for Windows, Mac and Linux operating systems. The Firefox 24 release is light on new user-facing features and heavy on security fixes, providing 17 security advisories, seven of which Mozilla has rated “critical.”
Among the critical vulnerabilities that Mozilla is fixing in Firefox 24 are a number of memory safety related security issues.
“Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products,” the Mozilla Foundation Security Advisory (MFSA) 2013-76 states. “Some of these bugs showed evidence of memory corruption under certain circumstances, and we presume that with enough effort at least some of these could be exploited to run arbitrary code.”
There is also a use-after-free flaw with the “select” HTML element. A use-after-free memory error is one where authorized memory is able to be used by unauthorized elements after it is no longer in use. Mozilla noted in its security advisory that security researcher Scott Bell used Google’s open-source Address Sanitizer tool in order to find the flaw. Google commonly uses Address Sanitizer itself to find use-after-free flaws in its own Chrome browser.
Memory corruption that could be triggered simply by scrolling a document is another critical flaw that Firefox 24 is fixing. Mozilla credits famed security researcher Nils for finding and reporting the flaw. Nils first gained media notoriety when as an unknown security researcher, he showed up at the 2009 Pwn2Own hacking challenge and was able to demonstrate previously unknown zero-day flaws in Internet Explorer, Firefox and Safari Web browsers.
Nils is also credited with the discovery of a potentially exploitable use-after-free issue that he found in an early test version of Firefox 25. Mozilla has found that they can also fix the same issue in Firefox 24.
The integrity of Mozilla updates is also going to get a bit better with Firefox 24 with improvements to protect the Mozilla Archive (MAR) file that is part of the Mozilla update process.
“Security researcher Seb Patane reported that the Mozilla Updater does not write-lock the MAR update file when it is in use by the Updater,” Mozilla warned in its advisory. “This leaves open the possibility of altering the contents of the MAR file after the signature on the file has been verified as valid but before it has been used.”
Features
From a feature perspective, Mozilla provided details on what to expect in Firefox 24 beta version of the browser first became available in August. One of the new user-facing features is the ability to close tabs to the right.
“When we open new tabs, they appear on the end, and so, naturally, tabs that have a longer lifetime end up being promoted to the start-side of the bar,” Jared Wein, senior software engineer at Mozilla, wrote in a blog post. “This leads us towards the situation where closing tabs ‘to the right’ is a simple way of closing the ephemeral tabs.”
Mozilla is still also working on a redesign of the Firefox interface, known as Australis.
Australis is an intensive redesign of the browser surface, Johnathan Nightingale, Mozilla’s vice president of Firefox Engineering, told eWEEK. “It’s really exciting stuff, but that means that there’s a lot of testing to be done before it lands,” Nightingale said. “We’re performance-testing it now, and once we’re confident it’s the fastest Firefox ever, we’ll ship it to the Nightly testing audience.”
Sean Michael Kerner is a senior editor at eWEEK and InternetNews.com. Follow him on Twitter @TechJournalist.
