Mozilla has provided an update to Firefox version 118.0.1 to close a vulnerability that is already being used to attack Chrome users. An update is also available for Firefox ESR 115.3.
It should also be noted here (you know, TL;DR) that it's also fixed in:
Firefox ESR 115.3.1
Firefox Focus for Android 118.1
Firefox for Android 118.1
Thunderbird 115.3.1
Anyone using Tor browser should know that they should check it's updating status before using it. Thankfully it checks itself but still, stay up to date before you browse.
Clickbaity title.
Yes it's being exploited, yes you should update, but the vulnerability is not actively exploited in Firefox as far as we (they) know of.
118.0.1 was first released on Sept 28 too, so this isn't exactly breaking news.
I was wondering if this happend again so soon, since I already updated last week.
Last time this story was posted, this was two updates ago. So unless you haven't upvoted in months, it's a non-issue.
It should also be noted here (you know, TL;DR) that it's also fixed in:
Firefox ESR 115.3.1
Firefox Focus for Android 118.1
Firefox for Android 118.1
Thunderbird 115.3.1
https://www.mozilla.org/en-US/security/advisories/mfsa2023-44/
And Tor Browser 12.5.5 which has backported the security fixes from Firefox ESR 115.3.1.
Anyone using Tor browser should know that they should check it's updating status before using it. Thankfully it checks itself but still, stay up to date before you browse.