Firefox 7 update for 10 flaws - SSL BEAST not among them.
Sep 29, 2011, 13:00 (0 Talkback[s])
"While Firefox 7 addresses multiple security issues, it is not
taking specific aim at the recent disclosure of potential SSL
vulnerabilities. The SSL BEAST attack was disclosed last week by
Researchers Thai Duong and Juliano Rizzo.
The SSL BEAST attack specifically affects the TLS 1.0
specification that Firefox currently uses. TLS 1.1 is not affected
by the attack. "We are close to having TLS 1.1 support for
Firefox," Brian Smith, platform engineer at Mozilla said in an
email sent to InternetNews.com.