The update removes some ad blockers and other stuff they used to support; staying with the current version.
Wait. Is DHS part of the Deep State?
Your link goes to:
“Why Quibi’s snack-size streaming service could actually live up to the hype”
Do any other browsers use the Firefox engine? Opera?
Are there people who still do not auto-update their OS and Browser?
How foolish.
One day they will pay a very high price.
I use Firefox and I’m up to date. thanks for the reminder, though!
Been with Firefox for years and never had a problem, unlike Explorer. Of course I’ve always used a reputable anti-virus since Windows 3.5 Have used Kapersky for years, but switched to PC Matic recently because ease of use. I don’t trust the Microsoft anti-virus bundle that comes with their OS, plus a huge memory hog with too many popup updates. I’ve found over time that if things work fine - don’t update. The few problems I’ve had is from that.
Applies to MacIntosh computer from Apple, if you read the full title.
I wonder if this applies to the version of Firefox used on Linux Mint.
DHS, some years back, asked the TrueCrypt people to put in a government only back door in their encryption program. The programmers at TrueCrypt obliged and a month or two later Amazon’s customer database was hacked using the DHS secret backdoor. TrueCrypt did not survive and went out of business.
Why would anyone do anything DHS says?
Here’s the security fix according to Mozilla:
Mozilla Foundation Security Advisory 2020-03
Security Vulnerabilities fixed in Firefox 72.0.1 and Firefox ESR 68.4.1
Announced January 8, 2020
Impact critical
Products Firefox, Firefox ESR
Fixed in
Firefox 72.0.1
Firefox ESR 68.4.1
#CVE-2019-17026: IonMonkey type confusion with StoreElementHole and FallibleStoreElement
Reporter Qihoo 360 ATA
Impact critical
Description
Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. We are aware of targeted attacks in the wild abusing this flaw.
References
Bug 1607443
It takes the gubmnt to tell me to upgrade my browser over .html based language read by my browser that automatically updated itself before it let me read the warning.
The problem:
Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion - https://www.mozilla.org/en-US/security/advisories/mfsa2020-03/#CVE-2019-17026
SpiderMonkey is written in C/C++ and contains an interpreter, the IonMonkey JIT compiler, and a garbage collector... The compiler can emit fast native code translations of JavaScript functions on the ARM, x86, and x86-64 platforms. It is the default engine since Firefox 18... SpiderMonkey is intended to be embedded in other applications that provide host environments for JavaScript. An incomplete list follows:
Mozilla Firefox, Thunderbird, SeaMonkey, and other applications that use the Mozilla application framework
Forks of Firefox including the Pale Moon, Basilisk and Waterfox web browsers.- https://en.wikipedia.org/wiki/SpiderMonkey
CVE-2019-17026, as the vulnerability is indexed, is a type confusion, a potentially critical error that can result in data being written to, or read from, memory locations that are normally off-limits. More - https://arstechnica.com/information-technology/2020/01/firefox-gets-patch-for-critical-zeroday-thats-being-actively-exploited/
I run Firefox ESR 59.02 since it enables all the extensions that make it far far superior to any other browser as regards enhanced functionality. But I also use Waterfox and Basilisk and 2 portable installs of Firefox Quantum (if not portable, it nukes the ESR, although you need to edit a .ini file to run more than one Firefox installation.
“I wonder if this applies to the version of Firefox used on Linux Mint.”
“The update removes some ad blockers and other stuff they used to support; staying with the current version.”
“My Linux version, 71.0, works just fine and will not be updated. I went down that path once before and it got so bad I had to switch to Chrome.”
I am tossed about this but I am leaning towards not updating my earlier version of Firefox in my Linux and here is why. First the source of the alert. If the government doesn’t like it then something is probably actually working against their rathers they want to disable, probably the fingerprint blocker. Second I am thinking, but could be wrong, that because of the way a Linux system is structured with the separate and isolated partitions. The system partition still could not be changed by anything at all without first being rooted with the key? I am open to any knowledge better than mine about this please if someone understands it better.