- Fixed the following security issues:
MFSA 2008-58 Parsing error in E4X default namespace
MFSA 2008-57 -moz-binding property bypasses security checks on codebase
principals
MFSA 2008-56 nsXMLHttpRequest::NotifyEventListeners() same-origin
violation
MFSA 2008-55 Crash and remote code execution in nsFrameManager
MFSA 2008-54 Buffer overflow in http-index-format parser
MFSA 2008-53 XSS and JavaScript privilege escalation via session restore
MFSA 2008-52 Crashes with evidence of memory corruption
(rv:1.9.0.4/1.8.1.18)
MFSA 2008-51 file: URIs inherit chrome privileges when opened from chrome
MFSA 2008-47 Information stealing via local shortcut files
- Fixed several stability issues.
- Official releases for the Icelandic and Thai languages are now available.
- Beta releases for the Bulgarian, Esperanto, Estonian, Latvian, Occitan,
and Welsh languages are available for testing.
- Updated the internal Public Suffix list.
- Fixed an issue where the IME input tool used to enter Japanese, Korean,
Chinese and Indic characters was covered by the "Add Bookmark" panel.
(bug 433340)
- Enabled additional EV root certificates. (bug 451305)
- Fixed an issue where some passwords saved using Firefox 3.0.2 did not
work properly. (bug 457358)
- In some cases, Firefox would not properly save proxy settings for
protocols other than HTTP. (bug 446536)
Changes:
* Fixed several security issues.
* Fixed several stability issues.
* Fixed a number of minor issues with the layout of certain web pages.
* Fixed several theme issues that affected right-to-left locales.
* Fixed issue that caused some users with customized toolbars to have their
Back and Forward buttons go missing (bug 426026)
* Add new Extended Validation (EV) roots to Firefox 3.0.2.
* On certain IDN sites, the password manager would not fill in username
and password details properly.
* Fixed several hangs and crashes that occurred when using screen readers.
* Fixed several security issues.
* Fixed several stability issues.
* Fixed an issue where the phishing and malware database did not update on first launch.
* Under certain circumstances, Firefox 3.0 did not properly save the SSL certificate exceptions list.
* Updated the internal Public Suffix list.
* In certain cases, installing Firefox 2 in the same directory in which Firefox 3 has been installed resulted in Firefox 2 being unstable. This issue was fixed as part of Firefox 2.0.0.15.
* Fixed an issue where, when printing a selected region of content from the middle of a page, some of the output was missing (bug 433373).
* Fixed a Linux issues where, for users on a PPP connection (dialup or DSL) Firefox always started in "Offline" mode (bug 424626).
This is a new major release of the popular Firefox browser from Mozilla.
Based on Gecko 1.9, it brings improvements in the areas of performance,
stability, rendering correctness, security, usability and more.
Release notes: http://www.mozilla.com/en-US/firefox/3.0/releasenotes/
