I'm running Firefox 3.5.8 in Linux. Would that be a problem? Some websites say that only 3.6.x is affected.
It would be a real inconvenience to update to a 3.6 version, because in Ubuntu (and most other Linuxes), updating of software is done automatically by the update manager of the distribution, and the Ubuntu repositories still contain version 3.5.8. Updating manually could make the whole system very messy, with all sort of potential problems as a result.
---------- Post added at 07:59 PM ---------- Previous post was at 07:52 PM ----------
It's interesting to note that it's not always true. There is an OSS OS, called OpenBSD which is advertised as the most secure OS today, and they distribute it with 'outdated' software (for example, Apache V1), but with their own set of patches. It's more like a fork actually, but it's interesting to note that a higher version number does not always guarantee a more secure app...
If it turns out to be true what I asked in my previous post, then 3.5.8 is currently more secure than 3.6.0.
As long as security holes are still actively being fixed, it could be beneficial to have an older version. Newer versions tend to have newer features, so they have more 'new code' that has not yet been exposed to security experts for very long.