saiu hoje o update do FF.
vai ae o changelog
* Improved stability
* International Domain Names are now displayed as punycode. (To show International Domain Names in Unicode, set the "network.IDN_show_punycode" preference to false.)
* Security Fixes
MFSA 2005-29 Internationalized Domain Name (IDN) homograph spoofing
MFSA 2005-28 Unsafe /tmp/plugtmp directory exploitable to erase user's files
MFSA 2005-27 Plugins can be used to load privileged content
MFSA 2005-26 Cross-site scripting by dropping javascript: link on tab
MFSA 2005-25 Image drag and drop executable spoofing
MFSA 2005-24 HTTP auth prompt tab spoofing
MFSA 2005-23 Download dialog source spoofing
MFSA 2005-22 Download dialog spoofing using Content-Disposition header
MFSA 2005-21 Overwrite arbitrary files downloading .lnk twice
MFSA 2005-20 XSLT can include stylesheets from arbitrary hosts
MFSA 2005-19 Autocomplete data leak
MFSA 2005-18 Memory overwrite in string library
MFSA 2005-17 Install source spoofing with user
ass@host
MFSA 2005-16 Spoofing download and security dialogs with overlapping windows
MFSA 2005-15 Heap overflow possible in UTF8 to Unicode conversion
MFSA 2005-14 SSL "secure site" indicator spoofing
MFSA 2005-13 Window Injection Spoofing
vai um aviso
If you are experiencing a crash while typing in the Firefox address bar, you can fix the problem by uninstalling Firefox 1.0.1, completely removing the Firefox program folder (probably C:\Program Files\Mozilla Firefox on Windows or /home/<user>/firefox-installer/ on Linux), and reinstalling Firefox 1.0.1.
To avoid this crash and other problems, do not install a new version using the installer into the same folder as an older zipped installation.
(ou seja, se vc tem problemas do FF crashar enquanto digitar algo na barra de endereços, desinstale o FF 1.0.1, removendo todo o arquivo do programa (c:\arquivos de programas\mozilla firefox) no windows.
para evitar esse problema e outros, não intale a nova versão usando o instalador na mesma pasta com outra instalação zippada mais velha)
http://www.mozilla.org/projects/security/known-vulnerabilities.html