The Mozilla Foundation fixed a flaw in its Firefox browser that allowed spoofing of the HTTPS secure communications icon, displayed as a padlock in the browser address window. Successful exploitation of the flaw could have allowed a rogue website to intercept browser communications. The patch was part of the non-profit s Monday update to Firefox 88 and its corporate Firefox ESR 78.10 browser and its Thunderbird 78. In total, Firefox 88 addresses 13 browser bugs, six of which are rated high-severity. The relatively mild collection of Firefox fixes stand in contrast to Google and its Chrome browser.
Source: https://threatpost.com/mozilla-fixes-firefox-flaw/165501/