Geeks for your information News Privacy & Security News v
Audit Finds No Critical Flaws in Firefox Update System
Audit Finds No Critical Flaws in Firefox Update System
silversurfer Offline
Staff Member
******
Posts: 3,885
Threads: 3,283
Thanks Received: 5,064 in 3,838 posts
Thanks Given: 6,200
Joined: 12 September 18
#1
11 October 18, 15:38
Quote:An audit commissioned by Mozilla for the Firefox update system revealed no critical vulnerabilities and the flaws rated "high severity" were not easy to exploit.

Experts at Germany-based X41 spent 27 days analyzing the Firefox Application Update Service (AUS), including its update signing protocol, client code, backend and other components. The audit involved a cryptographic review, fuzzing, pentesting, and manual code analysis.

Mozilla has already patched the serious vulnerabilities and is currently working on addressing the less severe issues and the side findings. The organization has made public the full report from X41 and opened the bug tracker where the patching progress can be monitored.

Source: https://www.securityweek.com/audit-finds...ate-system
[-] The following 1 user says Thank You to silversurfer for this post:
  • harlan4096
Find
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:

[-]
Recent Posts
Thunderbird 151.0 & 140.11.0esr
Thunderbird 151.0 ...harlan4096 — 07:23
Waterfox 6.6.13
Waterfox 6.6.13 ...harlan4096 — 06:14
Subscription security: how to protect yo...
Why subscription o...harlan4096 — 06:10
Mozilla Firefox Browser 151.0
Mozilla Firefox Br...harlan4096 — 06:09
Tor Browser 15.0.14
Tor Browser 15.0.1...harlan4096 — 06:07

[-]
Birthdays
Today's Birthdays
No birthdays today.
Upcoming Birthdays
avatar (39)axuben
avatar (40)ihijudu
avatar (50)Mirzojap
avatar (36)idilysaju
avatar (40)odukoromu
avatar (46)Joanna4589

[-]
Online Staff
There are no staff members currently online.

>