Mozilla offered some details of the security fixes in the new versions of its Firefox web browser, Thunderbird news and email client, and the SeaMonkey “all-in-one Internet application suite.”
Based on the same Gecko platform, version 14.0 of Firefox and Thunderbird, and version 2.11 of SeaMonkey closed a number of the same security holes, some of which rate as “critical” by the project; updates have also gone out for the “enterprise” versions of Firefox and Thunderbird to address these issues.
The developers also corrected three high-risk vulnerabilities – including location spoofing and data leakage issues – and three moderate security bugs.
Additionally, the update to Firefox closes a high-risk cross-site scripting (XSS) problem, and two moderate issues. Many of these same vulnerabilities ended up addressed in version 10.0.6 of Mozilla’s “enterprise” Extended Support Releases (ESR) of Firefox ESR and Thunderbird ESR.