Source: http://www.informationweek.com/news/...on=All+Stories
Mozilla Corp. late Wednesday began rolling out a Firefox security update that patched 13 vulnerabilities, 8 of them judged "critical" by the Mountain View, Calif. open-source developer.

The update, which brings Firefox to 1.5.0.5, automatically downloads to existing copies of Firefox 1.5.x, but can also be retrieved in its entirety from the Mozilla Web site in versions for Windows, Linux, Mac OS X in 37 localized editions.

All 8 of the bugs tagged "critical" by Mozilla involve vulnerabilities and/or errors in JavaScript, the scripting language heavily used by the browser. JavaScript, like the ActiveX controls in the rival browser Internet Explorer, is the dominant source of Firefox flaws...

On Thursday, Mozilla updated its Thunderbird e-mail client to 1.5.0.5 by fixing 12 flaws, only one of which was elevated to "critical" (10 were labeled as "moderate")...