ALARM Group ALERT - click for a description of ALARM, The Computing Alert System Alert Number:  121906-01 Alert Date:  12/19/06 Alert Title:  Mozilla releases versions 2.0.0.1 and 1.5.0.9 of Firefox, 1.5.0.9 of Thunderbird Update-to:   None OS/Platform/Application:  Mozilla Firefox and Thunderbird versions < 2.0.0.1, 1.5.0.9 Category:  ALERT Severity:  MEDIUM Attention:  System Administrators, Desktop Support Personnel, Mozilla users

Summary:   On December 19 2006 The Mozilla Foundation announced the release of updated versions of its popular FireFox web browser and Thunderbird eMail Client.  According to the vendor, versions 2.0.0.1 and 1.5.0.9 address multiple security vulnerabilities (including several rated as "critical"). 

Recommended Actions:  The latest available version of Firefox is version 2.x, but version 1.5.x is still available for persons who have chosen to use the "old" variety of this product.  Persons who manage, maintain or use Firefox products (regardless of release version) are encouraged to read the update information (including any associated caveats, system requirements, etc) and (if appropriate) apply the upgrade immediately as per the instructions provided by the vendor.  Thunderbird users are encouraged to upgrade to 1.5.0.9.

ITS Actions:  At this time, ITS is taking no specific additional actions to address this software update release.

Resources:

Mozilla Homepage:
http://www.mozilla.org/

Mozilla Security Advisory Page (includes details of vulnerabilities addressed in
latest release):
http://www.mozilla.org/security/