hello Bill, there were two changes - one one of them a security critical fix, please refer to the release notes: https://www.mozilla.org/firefox/25.0.1/releasenotes/

Hello BillM,

Thank you for contacting Mozilla Support. You can find a list of the release notes here: Firefox Release Notes

The two big things fixed in 25.0.1 are:

• 25.0.1: New security fixes can be found here
• 25.0.1: Pages sometimes wouldn't load without first moving the cursor

Please let us know if this solves your question.

Cheers, Patrick

The response halfway addresses my question. The "New security fixes can be found here" link produces a list which simply says, "Fixed in Firefox 25" ... not just 25.0.1 vs. 25.0.

A list of the incremental changes to each release should be made readily available ... so we know what behavior changes to watch for. The bottom line: sloppy bug-management and customer-communication practices.

Somewhat better... evidence suggests that the release notes page was updated AFTER customers were notified about the new build. This step should be done BEFORE customer notifications are sent.

https://www.mozilla.org/security/known-vulnerabilities/firefox.html still doesn't list the security fixes in 25.0.1 :(

See also:

• https://wiki.mozilla.org/Releases/Firefox_25/Test_Plan#25.0.1

thanks, cor-el!

https://bugzilla.mozilla.org/show_bug.cgi?id=935959 says 25.0.1 includes NSS 3.15.3.

https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.3_release_notes says that includes fixes for CVE-2013-1741, CVE-2013-5605 and CVE-2013-5606.

i opened https://bugzilla.mozilla.org/show_bug.cgi?id=939467 to try to get somebody to fix it. if anybody knows who is responsible, please cc them on the bug

cheers

https://www.mozilla.org/security/known-vulnerabilities/firefox.html has now been updated :)