Thom sent me a link to Boing Boing about how the recently uncovered security problem in non-IE browsers was fixed in the Firefox/Mozilla CVS trunk 12 hours after discovery.
That’s awesome, but I’m still sitting here with a non-patched version and the main Mozilla site still has 1.0 for download off the front page. And I’m waiting for the Debian team to fix it as well. Here’s hoping that distribution of the patch goes just as quickly.