Mozilla fixes Firefox zero-day actively exploited in attacks
Mozilla has issued an emergency security update for the Firefox browser to address a critical use-after-free vulnerability that is currently exploited in attacks. [...]
Security updates fix software weaknesses, reduce exploitable risk, and may address vulnerabilities affecting systems, applications, and devices.
Search across headline titles and summaries.
Background for this topic.
Security updates are vendor-released patches, fixes, or configuration changes that address vulnerabilities and other weaknesses in operating systems, applications, libraries, firmware, cloud services, and network equipment. They may correct exploitable code, tighten security controls, or provide mitigations when a complete fix is not yet available.
For security practitioners, update news informs vulnerability management: assess whether affected assets are deployed, determine exposure and exploitability, prioritize urgent fixes, and verify installation. Applying updates can reduce attack paths such as remote code execution or privilege escalation, but rushed changes can disrupt services, so testing, staged deployment, rollback plans, and compensating controls may be needed. Advisories can also reveal required configuration changes, affected dependencies, or unsupported versions that need replacement.
Mozilla has issued an emergency security update for the Firefox browser to address a critical use-after-free vulnerability that is currently exploited in attacks. [...]
Microsoft has released security updates to fix a total of 118 vulnerabilities across its software portfolio, two of which have come under active exploitation in the wild