Firefix 1.0.4 is going to be released, it fixes a number of issues.
Upstream is fixing the following bugzilla.mozilla.org bugs:
292691 (CAN-2005-1476 CAN-2005-1477)
Potential for full compromise. It seems we're not very affected.
Can we please use this opportunity to fix directory/file ownerships in %files?
This would solve Bug #73893 and IT#72095 where lots of support time was wasted.
The fix is fairly simple, just install the package and loop rpm -qi on every
file and directory in the installed tree to find unowned.
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.