Security update for Mozilla Firefox to new version 72.0.1
The update eliminates a 0-day vulnerability classified as critical that is already being used for attacks.
One day after the release of Firefox version 72.0, Mozilla released an urgent security update. A vulnerability found in Firefox up to and including version 72.0 was classified as critical. According to Mozilla, targeted attacks are already known on the web that exploit this vulnerability.
No details are known about the reported attacks. Since Mozilla speaks of targeted attacks in the wild, only a few selected targets are apparently initially affected. Because the gap is now known to be exploitable, others will soon jump on the bandwagon and launch broader attacks using prepared web pages.
Mozilla has closed the security vulnerability in Firefox 72.0.1 and Firefox ESR 68.4.1. You should import the update to the new version immediately.
Firefox 72.0.1 will install via the browser's auto-update function. Alternatively you can download the latest version here.
Firefox on UpdateStar | Download