Software-update: Mozilla Seamonkey 1.1.14

De leden van de Seamonkey Council hebben een nieuwe security release met 1.1.14 als het versienummer uitgebracht. Seamonkey beschikt over een browser en een e-mailprogramma die gebruik maken van Gecko 1.8.1. Daarnaast is er ook een nieuwsgroep- en irc-client aanwezig en wordt het geheel volmaakt met een programma om html-bestanden te bewerken. Seamonkey 1.1.14 is van de volgende aankondiging voorzien:

SeaMonkey 1.1.14 Released

Today, the SeaMonkey project released a new version of its all-in-one internet suite. SeaMonkey 1.1.14 closes several security vulnerabilities and fixes several smaller problems found in previous versions. With that, SeaMonkey stays at the same level of security as its sibling Firefox 2, which is issuing updates for the same problems this week as well.

The SeaMonkey team urges users of older SeaMonkey versions, including the SeaMonkey 1.0.x series, which no longer receives security updates, to upgrade. Additionally, the team continues to strongly urge people still using the old Mozilla Suite or Netscape 4, 6 or 7 to upgrade to the new SeaMonkey 1.1.14 version. All these older software packages suffer from a large and steadily increasing number of security vulnerabilities because they are no longer being maintained. SeaMonkey 1.1.14 is a modern, drop-in replacement, providing the same familiar suite functionality with additional features and fully up to date security.

Fixed in SeaMonkey 1.1.14:

• MFSA 2008-68 XSS and JavaScript privilege escalation
• MFSA 2008-67 Escaped null characters ignored by CSS parser
• MFSA 2008-66 Errors parsing URLs with leading whitespace and control characters
• MFSA 2008-65 Cross-domain data theft via script redirect error message
• MFSA 2008-64 XMLHttpRequest 302 response disclosure
• MFSA 2008-61 Information stealing via loadBindingDocument
• MFSA 2008-60 Crashes with evidence of memory corruption (rv:1.9.0.5/1.8.1.19)

[break]