You should update Firefox now to patch a serious security flaw – here’s how
The vulnerability was being actively exploited
When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.
Mozilla has released an urgent Firefox update after discovering a serious security vulnerability that could allow attackers to take control of users' computers.
The problem affects desktop versions of the browser, including Firefox ESR, which is intended for use by system administrators who control desktop environments in schools, offices, governments and other organizations.
Mozilla hasn’t given specific details of how the problem had been exploited, but credited Chinese internet security firm Qihoo 360 with discovering it.
AsArs Technicaexplains, CVE-2019-17026 is a type of weakness that could result in data being written to, or read from, areas that are normally out of bounds. This could allow an attacker to run malicious code, or cause the browser to crash.
“Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion,” Mozilla explained onits security advisory page. “We are aware of targeted attacks in the wild abusing this flaw.”
Update your browser
The vulnerability (indexed as CVE-2019-17026) has been patched with the Firefox 72.0.1 update. This should be installed automatically next time you restart the browser.
You can find out which version of you’re currently running and force an update manually by entering about:preferences#general in the address bar, scrolling down to ‘Firefox updates’ and clicking ‘Restart to update Firefox’ if the option is available.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
Cat is TechRadar’s Homes Editor specializing in kitchen appliances and smart home technology. She’s been a tech journalist for 15 years, and is here to help you choose the right devices for your home and do more with them. When not working she’s a keen home baker, and makes a pretty mean macaron.
A new form of macOS malware is being used by devious North Korean hackers
Scammers are using fake copyright infringement claims to hack businesses
This new malware utilizes a rare programming language to evade traditional detection methods
