Mozilla.org Has Released Firefox 3.6.2
Tuesday, March 23, 2010 at 01:31PM
drStrangeP0rk in Firefox, Updates

Firefox version 3.6.2 has been released to address a WOFF heap corruption due to integer overflow discovered by Evgeny Legerov. The flaw can cause the allocation of memory for a downloaded font to be inadequate. This causes a crash which can result in arbitrary code execution. 

Article originally appeared on magmatic.com (http://www.magmatic.com/).
See website for complete article licensing information.