Last Tuesday, as scheduled, Mozilla He launched Firefox 71. The company famous for being the creator of the fox browser published then the usual list of new features, but the security improvements that were included in the new version do not appear in this list. If we wanted to know them, we had to enter a special section or wait for the Canonical report, a report that was published a few hours ago.
The report that tells us about the vulnerabilities fixed in Firefox 71 is the USN-4216-1, where a total of 9 security flaws, all of them labeled as medium urgency. Vulnerabilities are the CVE-2019-11745, CVE-2019-11756, CVE-2019-17005, CVE-2019-17008, CVE-2019-17010, CVE-2019-17011, CVE-2019-17012, CVE-2019-17013 y CVE-2019-17014, but at the time of writing, none of them includes a specific description.
Firefox 71 is now available in the official repositories
An overview is available in the report published by Canonical:
Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could exploit it to cause a denial of service, obtain confidential information, or execute arbitrary code..
These bugs are similar to many others that have been fixed and will correct over time. For this reason, modern browsers, such as Firefox, usually warn us if they detect that a website can be dangerous. The bad thing is that, sometimes, they detect a page that is not malicious as malicious, but we should only access them if we are totally sure that it is trustworthy.
Firefox 71 was officially launched on Tuesday, December 3, but it was not until today that has reached the official repositories. Introduced highlights such as a new Kiosk mode, which we can access by opening a terminal and typing (without the quotes) "firefox –kiosk", improvements in Lockwise or, for Windows users, the Picture-in-Picture mode activated by default for compatible services such as YouTube.