Patches: Firefox, iTunes

Mozilla fixed Firefox, Apple updated iTunes.

Firefox 3.6.7 addresses 14 vulnerabilities, eight of which are described as critical. The most serious flaws involve the handling of malformed PNG images, memory bugs and other code execution risks. The cross-platform update also aims to tackle a variety of stability glitches, Mozilla's release notes explain.

Separately, Apple released a new version of iTunes for Windows machines. The 9.2.1 updates deals with a buffer overflow vulnerability. Left unfixed, the flaw creates a possible route for hackers to inject hostile code onto vulnerable Windows boxes, provided they first trick users into opening dodgy links on contaminated websites.

Source: The Register.