FYI...
Firefox 55.0.1 released
Start Firefox, then >Help >About >Apply Update ...
-or-
Download: https://www.mozilla.org/en-US/firefox/all/
Release notes:
- https://www.mozilla.org/en-US/firefo.../releasenotes/
August 10, 2017
Fixed in 55.0.1:
- Fix a rendering issue with some PKCS#11 libraries (bug 1388370)
- Fix a problem causing What's new pages not to be displayed (bug 1386224)
- Fix a regression the tab restoration process (bug 1388160)
- Disable the predictor prefetch (bug 1388160)
___
Firefox 'add-on' technology is modernizing
> https://support.mozilla.org/en-US/kb...gy-modernizing
"'Add-ons' allow you to add extra features and functionality to Firefox. Anyone can create an extension and make it available for people to download.
>> What's happening?
In the past, add-ons often stopped working each time a new version of Firefox was released, because developers had to update them every six weeks to keep them compatible. Since add-ons could also modify Firefox internal code directly, it was possible for bad actors to include malicious code in an innocent-looking add-on.
To address these issues, and as part of broader efforts to modernize Firefox as a whole, we’ve been transitioning to a new framework for developing Firefox extensions. You can still personalize Firefox with add-ons the same way you do now, except they won’t break in new Firefox releases.
Note: Starting in Firefox 57, which will be released in November 2017, only add-ons built with this new technology will work in Firefox. These are indicated by the “Compatible with Firefox 57+” label on addons.mozilla.org (AMO). Add-ons built with the old technology are labeled “Legacy” on the about:addons tab.
If an add-on does not have the "Compatible with 57+" label or has the -Legacy- label, the developer may be in the process of transitioning to the new technology..."
___
Fixed in Firefox v55.0:
- https://www.mozilla.org/en-US/securi...fox/#firefox55
> https://www.mozilla.org/en-US/securi...s/mfsa2017-18/
Critical:
CVE-2017-7798: XUL injection in the style editor in devtools
CVE-2017-7800: Use-after-free in WebSockets during disconnection
CVE-2017-7801: Use-after-free with marquee during window resizing
CVE-2017-7779: Memory safety bugs fixed in Firefox 55 and Firefox ESR 52.3
___
FF 52.3.0 ESR released
Start Firefox, then >Help >About >Apply Update ...
-or- https://www.mozilla.org/en-US/firefo...nizations/all/
Release notes:
- https://www.mozilla.org/en-US/firefo.../releasenotes/
August 8, 2017
Fixed:
- Various security fixes*
- Various stability and regression fixes
* https://www.mozilla.org/en-US/securi...s/mfsa2017-19/
Critical:
CVE-2017-7798: XUL injection in the style editor in devtools
CVE-2017-7800: Use-after-free in WebSockets during disconnection
CVE-2017-7801: Use-after-free with marquee during window resizing
CVE-2017-7779: Memory safety bugs fixed in Firefox 55 and Firefox ESR 52.3