Opera screeches at Mozilla over security disclosure
Spilling the beans
Opera has taken exception to the manner in which Mozilla handled the disclosure of a security bug that affects both firm’s browsers. The moderate severity flaw involving file input controls creates a means to upload arbitrary files, assuming hackers know the full path and name of the file.
Mozilla fixed the flaw, along with other more serious bugs, with the release of Firefox 220.127.116.11 on 7 February. Opera, which is yet to plug the moderate risk flaw, objected to the Mozilla team publishing an advisory on the issue.
Full story: theregister.co.uk