Mozilla Firefox 112 brings both security fixes and functional improvements, according to the release notes from Mozilla developers. Users can now reveal passwords using the right-click feature, while the shortcut Ctrl+Shift+T now reopens the last session or restores recently closed tabs. Enhanced Tracking Protection (ETP) comes with updated parameters, and the Firefox ESR 102.10 is now available with seven high-risk, five medium, and one low-risk security fixes.
Meanwhile, the Thunderbird mail program adds encryption with S/MIME to new messages and fixes a bug that misapplied daylight saving time on calendar events in the America/Mexico_City time zone. Along with eight high-risk vulnerabilities, Thunderbird also fixed six medium-risk or low-risk problems.
Overall, Firefox 112 addresses 22 vulnerabilities, 10 of which are high-risk. Attackers could have circumvented the Mozilla Maintenance Service write lock to manipulate update files on Windows or abused memory access outside the intended limits in WebGL on macOS to inject malicious code. Meanwhile, on Android, users could have been presented with fake content through disguised full-screen notifications.
Users can update the Firefox browser or Thunderbird mail program by clicking on the browser menu and selecting “Help” and “About Firefox/Thunderbird.” This displays the current version in use and enables users to initiate the necessary update and browser restart.
