Firefox 58.0 released

Started by techie, January 23, 2018, 02:35:47 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

techie

Firefox 58.0 was released to the update channel. It has some improvements. I didn't see any security update notes for this release.

https://www.mozilla.org/en-US/firefox/58.0/releasenotes/

Pete!

Strange... I lost all my logins when I updated.
I don't recall that ever happening before.

Corrine

Quote from: techie on January 23, 2018, 02:35:47 PM
I didn't see any security update notes for this release.

That is because the security advisories are normally published later than the release notes. 

Firefox ESR was updated to version 52.6.0.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

ky331


Corrine

Additionally note that Firefox ESR included the critical update for CVE-2018-5089.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

winchester73

Quote from: Pete! on January 23, 2018, 03:08:41 PM
Strange... I lost all my logins when I updated.
I don't recall that ever happening before.

I didn't have that issue when the update was applied  :-\
Speak softly, but carry a big Winchester ... Winchester Arms Collectors Association member

plodr

What is CVE-2018-5089?
When I googled the first hit I got was Red Hat.
https://access.redhat.com/security/cve/cve-2018-5089

which led me here
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5089

which led me here
https://nvd.nist.gov/vuln/detail/CVE-2018-5089
and that said CVE ID not found.

I feel like I'm going in circles. My avatar is circular but I dislike going in circles.  ;)
Chugging coffee and computing!

Corrine

I found the same as you that the CVE is "reserved".  Mozilla points CVC-2018-5089 to a long list of Bug ID's:

Bug ID: 1412420, 1426783, 1422389, 1415598, 1410134, 1408017, 1224396, 1382366, 1415582, 1417797, 1409951, 1414452, 1428589, 1425780, 1399520, 1418854, 1408276, 1412145, 1331209, 1425612


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

plodr

Thanks.
Ignorance is bliss. I guess I'll stay in the dark on this one and be happy.  :o
Chugging coffee and computing!

Corrine

Firefox version 58.0.1 released.  The critical security update was issued to fix Bug 1433065 which resulted in Firefox 58 not loading any pages (including about: pages) when using certain non-default security policies on Windows (for example with Windows Defender Exploit Protection or Webroot security products).

Release Notes
Security Updates


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Corrine

Mozilla sent Firefox Version 58.0.2 to the release channel today.  The update addresses a number of bugs.

ESR remains at version 52.6.0.

Mozilla Firefox Release Notes


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.