Mozilla’s Firefox 25 web browser is now available with 10 security fixes along with the latest improvements.
Five of the issues ended up labeled as critical, which means that attackers could exploit them to run code and install software without user interaction being required.
Miscellaneous memory safety hazards and use-after-free issues found through ASAN fuzzing were also a part of the fix.
The high-impact security holes include an access violation issue with XSLT and initialized data, and a security bypass of PDF.js via iframes, and a potentially exploitable crash caused when a cycle collected object releases on the wrong thread during image decoding.
Mozilla said users should update their installations to protect themselves against hacker attacks that might leverage these vulnerabilities.