![]() Please note that the identity panel will always be able to help you on secure sites when IDNs are in use to notice potential spoofing, as opposed to relying on detection algorithms in the URL itself. Pale Moon will display these kinds of spoofed domains in punycode now in the actual address bar. Mitigated some domain name spoofing through IDN by using dotless-i and dotless-j with accents.This mitigates cookie-injection, which might help against "hidden" cookie tracking. Implemented the concept of so-called "cookie-averse document objects" which is a security&privacy measure that blocks certain web content from setting cookies.temporary permission issues due to backup, virus scanning or similar external processes). Fixed an issue in the case the preferences file in the profile would not be writable (e.g.Added some sanity checks on nsMozIconURI.Fixed a use-after-free when using focus().Fixed a buffer overflow using the computed size of canvas elements.Fixed an issue with invalid qcms transforms.For users who have (most likely accidentally) granted a system-wide waiver for opening these kinds of files without being prompted, this permission has been reset. Improved the security check for launching executable files (by association) on Windows from the browser. ![]() Fixed a potential vulnerability with plugins being redirected to different origins.Prevented various location-based threats.Restricted web access to the moz-icon:// scheme that could potentially be abused to infringe the user's privacy.Updated the useragent for to work around their "Only with Firefox" discrimination preventing users from downloading themes, old versions of extensions, and other files with Pale Moon.This major update is focused on performance, security and some regression and bug fixes. Unified XUL Platform Mozilla Security Patch Summary: 2 fixed, 7 DiD, 12 not applicable.Fixed an issue with the JavaScript JIT compiler that could lead to exploitable crashes.Fixed an issue where files could inadvertently be executed with the designated file type handler instead of opened.Fixed several stability and memory safety hazards. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |