Friday, October 12, 2012

10.0.9 chemspill

I said that 10.0.8 was not vulnerable to bug 720619 and I was wrong; it is vulnerable to a variety of the attack (in fairness, Mozilla initially didn't think it was vulnerable either). 10.0.9 is now available and 10.0.10 will conclude 10.x. There are no 10.0.9 changesets; 10.0.7's still apply unmodified.

4 comments:

  1. I've been using TenFourFox for quite awhile now, and I'm interested in running the unstable builds. Sorry if I'm seeming obtuse, but where do I download them? The FAQ directs me to this (your development blog), and though I'm finding posts related to the unstable builds, I'm not finding links to the actual builds.

    ReplyDelete
  2. Never mind, somehow I'd missed the unstable versions when I'd glanced at the downloads tab. So 17.0a2 is the most current unstable release, correct?

    ReplyDelete
  3. Yes. However, I'd wait on 17a2 until I get 17 beta out -- besides the security vulnerability, there were a number of important fixes that went in, and we also have fixes in hand for issues 171 and 180. I'm making a G5 build right now to do some basic testing on, and if it looks decent, then we'll flip over and build the other three. ETA probably tomorrow afternoon or Sunday.

    ReplyDelete
  4. Thanks for the update. I'm spending some time reading the blog now so I can get some idea about the issues you're referring to. Though I've been using 10.4fx off and on for over a year (and probably closer to two or maybe even three, if my memory serves me right), I haven't actually read the dev blog before. I'm on it now, though. Thanks again!

    ReplyDelete

Due to an increased frequency of spam, comments are now subject to moderation.