Firefox 3.5.1 was released earlier today. This ‘firedrill’ release addresses issues with slow start-ups on Windows builds as well as a recent CRITICAL vulnerability discovered in the TraceMonkey Java Script Optimizer. This vulnerability can be used to run attacker code and install software, requiring no user interaction beyond normal browsing. Non-critical fixes and enhancements which were planned for the original Firefox 3.5.1 release will be implemented in the upcoming Firefox 3.5.2 release currently scheduled for release at the end of July or early August.
Auto-updates should be occurring in the next 24-48 hours, otherwise users may get the latest update by going to Help menu and selecting Check For Updates. FYI: for those using the recently updated Google Gears it appears the extension developer has an incorrect max version setting on the add-on resulting in an ‘incompatible extension’ notice when updating. Hopefully this will be corrected soon as this extension is used by many WordPress.com users.
Finally this reminder from Mozilla Developer Network, If you’re still using Firefox 2.0.0.x, this version is no longer supported and contains known security vulnerabilities. Please upgrade to Firefox 3.5 by downloading Firefox 3.5.1 from www.firefox.com.
Source: Mozilla Links