Mozilla Corp. updated Firefox Friday to patch 14 vulnerabilities,
three of them critical, but pushed out the new versions without fixing
several flaws.

Firefox 2.0.0.2 and Firefox 1.5.0.10, which originally were to
release on Wednesday, were delayed to patch a series of bugs, including
some disclosed this month by Polish researcher Michal Zelewski. Two others forwarded to Mozilla developers by Zelewski, however, didn’t make it into today’s updates.

“Neither of those will make this release,” said Daniel Veditz, of the
Mozilla security in an e-mail. “It is important that we get the
security fixes we have into the hands of our users.”

Story continues at computerworld.com