Pale Moon has been updated to Version 27.7.2. This is a security and stability update.
Linux versions will follow shortly. Details from the Release Notes:
Changes/fixes:
- Changed the
X-Content-Type-Options: nosniff
behavior to only check "success" class server responses, for web compatibility reasons. - Changed the performance timer resolution once more to a
granularity of 1 ms, after evaluating more potential ways of abusing
Spectre.
This takes the most cautious approach possible lacking more information (because apparently NDAs have been signed over this between mainstream players), follows Safari's lead, and should make it not just infeasible but downright impossible to use these timers for nefarious purposes in this context.
- Improved the debug-only startup cache wrapper to prevent a
rare crash.
- Fixed a crash in the XML parser.
- Added a check for integer overflow in
AesTask::DoCrypto()
(CVE-2018-5122) DiD - Fixed a potential race condition in the browser cache.
- Fixed a crash in HTML media elements (CVE-2018-5102)
- Fixed a crash in XHR using workers.
- Fixed a crash with some uncommon FTP operations.
- Fixed a potential race condition in the JAR library.
- Windows Vista/Windows 7/8/10/Server 2008 or later
- Windows Platform Update (Vista/7) strongly recommended
- A processor with SSE2 instruction support
- 256 MB of free RAM (512 MB or more recommended)
- At least 150 MB of free (uncompressed) disk space
No comments:
Post a Comment
Neither spam nor comments containing vulgarities will be approved.