{"id":14369,"date":"2013-05-14T11:34:07","date_gmt":"2013-05-14T18:34:07","guid":{"rendered":"http:\/\/www.intego.com\/mac-security-blog\/?p=14369"},"modified":"2016-10-06T12:31:55","modified_gmt":"2016-10-06T19:31:55","slug":"mozillas-firefox-21-fixes-critical-vulnerabilities","status":"publish","type":"post","link":"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/","title":{"rendered":"Mozilla\u2019s Firefox 21 Fixes Critical Vulnerabilities"},"content":{"rendered":"<p>The Mozilla Foundation has <a href=\"https:\/\/www.mozilla.org\/security\/known-vulnerabilities\/firefox.html#firefox21\" target=\"_blank\">released<\/a> Firefox 21 for Mac OS X with fixes for eight vulnerabilities (3 critical, 4 high, 1 moderate). Mozilla&#8217;s Firefox 21 resolves three critical vulnerabilities, which the company identifies as flaws that can be used to run attacker code and install software on affected machines, requiring no user interaction beyond normal web browsing.<\/p>\n<p>Some of the issues resolved in the Firefox software update are potentially exploitable, allowing for remote code execution. Therefore, we strongly recommend all Firefox users apply these updates as soon as possible.<\/p>\n<p>Following is a list of the security issues resolved in this update:<\/p>\n<ul>\n<li><a href=\"https:\/\/www.mozilla.org\/security\/announce\/2013\/mfsa2013-48.html\" target=\"_blank\">MFSA 2013-48<\/a> Memory corruption found using Address Sanitizer<\/li>\n<li><a href=\"https:\/\/www.mozilla.org\/security\/announce\/2013\/mfsa2013-47.html\" target=\"_blank\">MFSA 2013-47<\/a> Uninitialized functions in DOMSVGZoomEvent<\/li>\n<li><a href=\"https:\/\/www.mozilla.org\/security\/announce\/2013\/mfsa2013-46.html\" target=\"_blank\">MFSA 2013-46<\/a> Use-after-free with video and onresize event<\/li>\n<li><a href=\"https:\/\/www.mozilla.org\/security\/announce\/2013\/mfsa2013-45.html\" target=\"_blank\">MFSA 2013-45<\/a> Mozilla Updater fails to update some Windows Registry entries<\/li>\n<li><a href=\"https:\/\/www.mozilla.org\/security\/announce\/2013\/mfsa2013-44.html\" target=\"_blank\">MFSA 2013-44<\/a> Local privilege escalation through Mozilla Maintenance Service<\/li>\n<li><a href=\"https:\/\/www.mozilla.org\/security\/announce\/2013\/mfsa2013-43.html\" target=\"_blank\">MFSA 2013-43<\/a> File input control has access to full path<\/li>\n<li><a href=\"https:\/\/www.mozilla.org\/security\/announce\/2013\/mfsa2013-42.html\" target=\"_blank\">MFSA 2013-42<\/a> Privileged access for content level constructor<\/li>\n<li><a href=\"https:\/\/www.mozilla.org\/security\/announce\/2013\/mfsa2013-41.html\" target=\"_blank\">MFSA 2013-41<\/a> Miscellaneous memory safety hazards (rv:21.0 \/ rv:17.0.6)<\/li>\n<\/ul>\n<p>Users can update Firefox using the browser\u2019s internal updater (Firefox &gt; About Firefox &gt; Check for Updates), or you can <a href=\"https:\/\/www.mozilla.org\/en-US\/firefox\/new\/\" target=\"_blank\">download the new Firefox<\/a> from Mozilla\u2019s official site.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The Mozilla Foundation has released Firefox 21 for Mac OS X with fixes for eight vulnerabilities (3 critical, 4 high, 1 moderate). Mozilla&#8217;s Firefox 21 resolves three critical vulnerabilities, which the company identifies as flaws that can be used to run attacker code and install software on affected machines, requiring no user interaction beyond normal [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":9917,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"spay_email":"","jetpack_publicize_message":"","jetpack_is_tweetstorm":false},"categories":[5],"tags":[56,397,207,201],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v17.4 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<meta name=\"description\" content=\"The Mozilla Foundation has released Firefox 21 for Mac OS X with fixes for eight vulnerabilities (3 critical, 4 high, 1 moderate). Mozilla&#039;s Firefox 21\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Mozilla\u2019s Firefox 21 Fixes Critical Vulnerabilities - The Mac Security Blog\" \/>\n<meta property=\"og:description\" content=\"The Mozilla Foundation has released Firefox 21 for Mac OS X with fixes for eight vulnerabilities (3 critical, 4 high, 1 moderate). Mozilla&#039;s Firefox 21\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/\" \/>\n<meta property=\"og:site_name\" content=\"The Mac Security Blog\" \/>\n<meta property=\"article:published_time\" content=\"2013-05-14T18:34:07+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2016-10-06T19:31:55+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Firefox-Security-Update-Tile.png\" \/>\n\t<meta property=\"og:image:width\" content=\"400\" \/>\n\t<meta property=\"og:image:height\" content=\"260\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Derek Erwin\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\",\"name\":\"Intego\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/\",\"sameAs\":[],\"logo\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#logo\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png\",\"contentUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png\",\"width\":875,\"height\":875,\"caption\":\"Intego\"},\"image\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#logo\"}},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#website\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/\",\"name\":\"The Mac Security Blog\",\"description\":\"Keep Macs safe from the dangers of the Internet\",\"publisher\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.intego.com\/mac-security-blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#primaryimage\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Firefox-Security-Update-Tile.png\",\"contentUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Firefox-Security-Update-Tile.png\",\"width\":\"400\",\"height\":\"260\",\"caption\":\"Firefox browser security updates\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#webpage\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/\",\"name\":\"Mozilla\\u2019s Firefox 21 Fixes Critical Vulnerabilities - The Mac Security Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#primaryimage\"},\"datePublished\":\"2013-05-14T18:34:07+00:00\",\"dateModified\":\"2016-10-06T19:31:55+00:00\",\"description\":\"The Mozilla Foundation has released Firefox 21 for Mac OS X with fixes for eight vulnerabilities (3 critical, 4 high, 1 moderate). Mozilla's Firefox 21\",\"breadcrumb\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.intego.com\/mac-security-blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Mozilla\\u2019s Firefox 21 Fixes Critical Vulnerabilities\"}]},{\"@type\":\"Article\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#webpage\"},\"author\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/d7586ee278e291223dbae05ec1d95812\"},\"headline\":\"Mozilla\\u2019s Firefox 21 Fixes Critical Vulnerabilities\",\"datePublished\":\"2013-05-14T18:34:07+00:00\",\"dateModified\":\"2016-10-06T19:31:55+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#webpage\"},\"wordCount\":200,\"commentCount\":1,\"publisher\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Firefox-Security-Update-Tile.png\",\"keywords\":[\"Firefox\",\"Firefox 21\",\"Mozilla\",\"Security Updates\"],\"articleSection\":[\"Security News\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#respond\"]}]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/d7586ee278e291223dbae05ec1d95812\",\"name\":\"Derek Erwin\",\"image\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#personlogo\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/f88b4bb259f7d5b1d10884ffa4b3c126?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/f88b4bb259f7d5b1d10884ffa4b3c126?s=96&d=mm&r=g\",\"caption\":\"Derek Erwin\"},\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/author\/derek-erwin\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"description":"The Mozilla Foundation has released Firefox 21 for Mac OS X with fixes for eight vulnerabilities (3 critical, 4 high, 1 moderate). Mozilla's Firefox 21","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/","og_locale":"en_US","og_type":"article","og_title":"Mozilla\u2019s Firefox 21 Fixes Critical Vulnerabilities - The Mac Security Blog","og_description":"The Mozilla Foundation has released Firefox 21 for Mac OS X with fixes for eight vulnerabilities (3 critical, 4 high, 1 moderate). Mozilla's Firefox 21","og_url":"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/","og_site_name":"The Mac Security Blog","article_published_time":"2013-05-14T18:34:07+00:00","article_modified_time":"2016-10-06T19:31:55+00:00","og_image":[{"width":"400","height":"260","url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Firefox-Security-Update-Tile.png","type":"image\/png"}],"twitter_card":"summary_large_image","twitter_misc":{"Written by":"Derek Erwin","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Organization","@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization","name":"Intego","url":"https:\/\/www.intego.com\/mac-security-blog\/","sameAs":[],"logo":{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/#logo","inLanguage":"en-US","url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png","contentUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png","width":875,"height":875,"caption":"Intego"},"image":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#logo"}},{"@type":"WebSite","@id":"https:\/\/www.intego.com\/mac-security-blog\/#website","url":"https:\/\/www.intego.com\/mac-security-blog\/","name":"The Mac Security Blog","description":"Keep Macs safe from the dangers of the Internet","publisher":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.intego.com\/mac-security-blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#primaryimage","inLanguage":"en-US","url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Firefox-Security-Update-Tile.png","contentUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Firefox-Security-Update-Tile.png","width":"400","height":"260","caption":"Firefox browser security updates"},{"@type":"WebPage","@id":"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#webpage","url":"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/","name":"Mozilla\u2019s Firefox 21 Fixes Critical Vulnerabilities - The Mac Security Blog","isPartOf":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#primaryimage"},"datePublished":"2013-05-14T18:34:07+00:00","dateModified":"2016-10-06T19:31:55+00:00","description":"The Mozilla Foundation has released Firefox 21 for Mac OS X with fixes for eight vulnerabilities (3 critical, 4 high, 1 moderate). Mozilla's Firefox 21","breadcrumb":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.intego.com\/mac-security-blog\/"},{"@type":"ListItem","position":2,"name":"Mozilla\u2019s Firefox 21 Fixes Critical Vulnerabilities"}]},{"@type":"Article","@id":"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#article","isPartOf":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#webpage"},"author":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/d7586ee278e291223dbae05ec1d95812"},"headline":"Mozilla\u2019s Firefox 21 Fixes Critical Vulnerabilities","datePublished":"2013-05-14T18:34:07+00:00","dateModified":"2016-10-06T19:31:55+00:00","mainEntityOfPage":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#webpage"},"wordCount":200,"commentCount":1,"publisher":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization"},"image":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#primaryimage"},"thumbnailUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Firefox-Security-Update-Tile.png","keywords":["Firefox","Firefox 21","Mozilla","Security Updates"],"articleSection":["Security News"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.intego.com\/mac-security-blog\/mozillas-firefox-21-fixes-critical-vulnerabilities\/#respond"]}]},{"@type":"Person","@id":"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/d7586ee278e291223dbae05ec1d95812","name":"Derek Erwin","image":{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/#personlogo","inLanguage":"en-US","url":"https:\/\/secure.gravatar.com\/avatar\/f88b4bb259f7d5b1d10884ffa4b3c126?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f88b4bb259f7d5b1d10884ffa4b3c126?s=96&d=mm&r=g","caption":"Derek Erwin"},"url":"https:\/\/www.intego.com\/mac-security-blog\/author\/derek-erwin\/"}]}},"jetpack_featured_media_url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Firefox-Security-Update-Tile.png","jetpack_publicize_connections":[],"jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p4VAYd-3JL","amp_enabled":true,"_links":{"self":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/14369"}],"collection":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/comments?post=14369"}],"version-history":[{"count":13,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/14369\/revisions"}],"predecessor-version":[{"id":14395,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/14369\/revisions\/14395"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/media\/9917"}],"wp:attachment":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/media?parent=14369"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/categories?post=14369"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/tags?post=14369"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}