Mozilla has rolled out the latest version of its Firefox Quantum with various feature uplifts. The new Firefox 65 not only provides clearer content blocking options but also brings fixes for numerous security vulnerabilities. This includes fixes for multiple critical vulnerabilities as well.
Firefox 65 Content Blocking Feature
Mozilla introduced a content blocking feature with Firefox 63 that enabled users to block web trackers. Now, with the recently released Firefox Quantum version Firefox 65, Mozilla has improvised “Content Blocking” settings by elaborating various options. The new settings allow users to choose either of the “standard” or “strict” blocking modes for trackers. Or, they can set up personalized settings using the “Custom” mode.
Security Vulnerabilities Patched In Firefox 65
The new Firefox 65 not only introduced API changes and feature upgrades but also patches numerous security flaws. Mozilla has allegedly fixed three critical vulnerabilities, three high severity flaws, and a single medium severity level flaw, as elaborated in Mozilla’s security advisory.
The three critical flaws include a Use-after-free parsing HTML5 stream flaw (CVE-2018-18500) and memory safety bugs CVE-2018-18501 (affecting Firefox 64 and Firefox ESR 60.4) and CVE-2018-18502 that affected Firefox 64.
Whereas, the other vulnerabilities receiving patches in the latest Firefox browser version include three high severity bugs – memory corruption with audio buffer (CVE-2018-18503), memory corruption and out-of-bounds read of texture client buffer (CVE-2018-18504), and privilege escalation through IPC channel messages (CVE-2018-18505). It also includes a medium severity flaw (CVE-2018-18506) where a proxy auto-configuration file can define localhost access to be proxied.
Although, Mozilla as already rolled-out Firefox 65 for automatic system updates. Yet, the Firefox users should still ensure that they have the latest version of the browser running on their devices.