14 DAY TRIAL // On March 18, Canonical published details about a number of Firefox vulnerabilities for its Ubuntu 13.10, Ubuntu 12.10, and Ubuntu 12.04 LTS operating systems, and it released a new version in the official repositories that should take care of the problems.
A large number of security issues have been fixed for Firefox during the latest Pwn2Own 2014 event. Hackers are invited to find security problems in various applications, including Firefox, and they are rewarded for it.
According to the Ubuntu security report, “Benoit Jacob, Olli Pettay, Jan Varga, Jan de Mooij, Jesse Ruderman, Dan Gohman, Christoph Diehl, Gregor Wagner, Gary Kwong, Luke Wagner, Rob Fletcher and Makoto Kato discovered multiple memory safety issues in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code with the privileges of the user invoking Firefox.”
And this is just one of the vulnerabilities found. For a more detailed description of the problems, you can visit Canonical's security notification. Ubuntu developers have been quick and made the new Firefox 28 available in the official repositories so that anyone can upgrade easily (including Ubuntu 14.04 LTS, which is not mentioned).
Alternatively, you can download Mozilla Firefox 28.0 right now from Softpedia.