Mozilla releases Firefox 79, fixes for 4 High risk bugs

Mozilla releases Firefox 79, fixes for 4 High risk bugs

The Mozilla Foundation has released Firefox 79 that includes security fixes for multiple vulnerabilities. The upgrade also includes WebRender to improve graphics performance for more Windows users with Intel and AMD GPUs.

As part of Mozilla Foundation Security Advisory 2020-30, Firefox 79 patched 10 vulnerabilities, to include 4 High severity vulnerabilities.

The High severity issues patched include:

  • CVE-2020-15652: Potential leak of redirect targets when loading scripts in a worker.
  • CVE-2020-6514: WebRTC data channel leaks internal address to peer.
  • CVE-2020-15655: Extension APIs could be used to bypass Same-Origin Policy.
  • CVE-2020-15659: Memory safety bugs fixed in Firefox 79.

Mozilla also noted that the memory safety vulnerability CVE-2020-15659 could be exploited to run arbitrary code. Google also fixed the WebRTC vulnerability CVE-2020-6514 as part of Chrome security update earlier in July.

In addition, 3 Medium severity and 3 Low severity bugs were also addressed in Firefox 79.

Other than WebRender, no other new Firefox feature improvements were noticeable for the average user.

As part of advisory 2020-34, Mozilla also released Firefox for iOS 28. This update addressed 2 high risk user java script vulnerabilities CVE-2020-15661 and CVE-2020-15662.

Related Articles