Tim Ferro

“A serious vulnerability in Mozilla Firefox has been addressed in release 2.0.0.7 which is now posted to the Firefox web site. The exploit involved an issue in QuickTime that could reportedly lead to a full compromise of the browser and possibly the underlying operating system. The official Mozilla security blog described the issue as follows:

“If Firefox is the default browser when a user plays a malicious media file handled by QuickTime, an attacker can use a vulnerability in QuickTime to compromise Firefox or the local machine. This can happen while browsing or by opening a malicious media file directly in QuickTime. So far this is only reproducible on Windows.”

The vulnerability was originally discovered by Petko D. Petkov, who also reported on two other QuickTime vulnerabilities last year.” – Source

The trailer is awesome!

“GNOME 2.20 has been officially released. There are a number of enhancements and improvements to things such as power management, Evince (the GNOME document view), Totem (the video player), and note-taking application Tomboy. There are also some changes to GNOME’s configuration utilities with an eye towards streamlining them. The timing is impeccable, too: ‘This release coincides with the tenth anniversary of GNOME’s existence. The project has evolved considerably since its earliest incarnation and has become a global phenomenon. Used as the default environment in popular Linux distributions like Ubuntu and Fedora, GNOME is widely used by Linux desktop users and is supported by a growing community of companies and independent developers. GNOME 2.20 will be included in the next major releases of many mainstream Linux distributions, including Ubuntu 7.10, which is scheduled for release next month. Users who wish to try it now can use the latest Ubuntu 7.10 live CD images, or the latest build of Foresight Linux. You can also check out the release notes.” – Source