Tuesday, March 11, 2025

Pale Moon Version 33.6.1 Released with Security Update

  Pale MoonPale Moon has been updated to version 33.6.1.  This is a security, bugfix and stability update.

Important: Mac and FreeBSD builds will be updated soon. They are currently not yet ready due to builder absence.

Changes/fixes:
  • Simplified some WASM code generation in the Ion JIT compiler.
  • Fixed a crash in loading external resource maps.
  • Disabled potentially unsafe attempts at recovering JIT operations.
  • Fixed some minor linking issues in about:rights.
  • Updated the embedded emoji font to fix incorrect display of some of the wheelchair emoji.
  • Security issues addressed: CVE-2025-1934 (*DiD).

    Notes:  *DiD This means that a fix is "Defense-in-Depth": It is a fix that does not apply to a (potentially) actively exploitable vulnerability in Pale Moon, but prevents future vulnerabilities caused by the same code, e.g. when surrounding code changes, exposing the problem, or when new attack vectors are discovered.

    Pale Moon includes both 32- and 64-bit versions for Windows: Pale Moon for Windows downloads.

    Update: To get the update now, select "Help" from the Pale Moon menu at the upper left of the browser window.  Select About Pale Moon > Check for Updates.

    Release Notes
    Release Cycle

    Home
    Remember - "A day without laughter is a day wasted."
    May the wind sing to you and the sun rise in your heart...

    Posted by No comments:
    Labels: , , ,

    Microsoft March 2025 Security Updates

     

    The Microsoft March 2025 security updates have been released and consist of 56 new CVEs to Microsoft products.


    Of the Microsoft CVEs released, 6 are rated critical and 50 are rated important in security. At the time of release, one is listed as being publicly known and six under active attack.

    The security updates apply to the following products, features and roles: Windows and Windows Components, Office and Office Components, Azure, .NET and Visual Studio, Remote Desktop Services, DNS Server, and Hyper-V Serve.

    See the list of KBs at the bottom of the page at March 2025 Security Updates - Release Notes - Security Update Guide - Microsoft for information regarding known issues with the security updates.

    Recommended Reading:   See Dustin Childs review and analysis in Zero Day Initiative -- The March 2025 Security Update Review.

    Additional Update Notes:

     

    References




    Remember - "A day without laughter is a day wasted."
    May the wind sing to you and the sun rise in your heart...
    Posted by No comments:
    Labels: , , ,

    Mozilla Firefox Version 136.0.1 Released with Updates

      Mozilla sent Firefox Version 136.0.1 to the Release Channel.

    Fixed

    • Fixed an issue where a cookie size limit caused problems with website cookie management when using the CookieStore API. This could cause login and other state-related issues. (Bug 1950565).
    • Fixed an issue where Control/Command+L did not focus the address bar in new windows. (Bug 1947723).

    Update: To get the update now, select "Help" from the Firefox menu, then pick "About Firefox".  Mac users need to select "About Firefox" from the Firefox menu.  For non-English versions, Fully Localized Versions are available for download.

    Release Notes


    Remember - "A day without laughter is a day wasted."
    May the wind sing to you and the sun rise in your heart...
    Posted by No comments:
    Labels: , ,
    Subscribe to: Posts (Atom)