Last month the Mozilla folks were celebrating the release of Firefox 3.5 but for some reason nobody noticed. Last summer the release of Firefox 3 set a Guinness World Record for the most downloaded software in a 24 hour period.
Even with over a weeks notice, downloads and enthusiasm for Firefox 3.5 just wasn’t the same. Maybe everyone was still tweeting about the election in Iran because the new release of Firefox certainly didn’t get the attention it deserved.
Yesterday Firefox 3.5 finally made it into the news and into the top tweets. Unfortunately, the news was a vulnerability was found in Firefox’s super fast JIT (Just-in-Time) JavaScript compiler
While some have recommend disabiling JavaScipt completely there is a solution that will temporarily disabled the JIT feature until Mozilla provides a patch.
According to the Mozilla Security Blog you just need to do the following…
- Enter about:config in the browser’s location bar.
- Type jit in the Filter box at the top of the config editor.
- Double-click the line containing javascript.options.jit.content setting the value to false.
You can watch for updates and check the Mozilla Blog at http://blog.mozilla.com to see when a fix is published. Once you receive the update, you’ll want to go back to the instructions above and set javascript.options.jit.content to True. That way you’ll still get the benefits of the faster JavaScript engine.
Update: A new version is now available to resolve this vulnerability. http://www.mozilla.com/en-US/firefox/firefox.html
0 comments:
Post a Comment