Mozilla has fixed 11 vulnerabilities in Firefox 3.0, more than half of them labelled ‘critical', and fixed 14 flaws in the older Firefox 2.0.
"Some of these crashes showed evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be exploited to run arbitrary code," said Mozilla in the accompanying advisory.
Mozilla also updated the older Firefox to 220.127.116.11, patching all but one of the bugs fixed in 3.0.2, but also addressing several issues specific to the aging browser.
It's unclear how many more updates Mozilla will release for Firefox 2.0 - it doesn't produce them on a set schedule - because it has already announced it will drop the browser in December. Mozilla continues to urge users to upgrade to Firefox 3.0.
One of the bugs in both Firefox 2.0 and 3.0, although rated only low, was described by Mozilla as a variant of a ‘click-hijacking' vulnerability first reported in Microsoft's Internet Explorer by Liu Die Yu, a researcher noted for finding flaws in IE. Microsoft first patched the bug in 2003, then patched it again the following year.
A Mozilla developer, Paul Nickerson, was credited with uncovering the Firefox variant, which could be used to force a user to download a file.
Users can download the update for Windows, Mac OS X and Linux from the Mozilla site, call up their browser's built-in updater or wait for the automatic update notification, which typically appears within 24 to 48 hours.