Pale Moon has been updated to version 27.9.2. This is a security and stability update. From the Release Notes:
Changes/fixes:
- We changed the language strings for softblocked items so people will cry less when we do our job.
- (CVE-2018-5174) Prevent potential SmartScreen bypass on Windows 10.
- (CVE-2018-5173) Fixed an issue in the Downloads panel improperly rendering some Unicode characters, allowing for the file name to be spoofed. This could be used to obscure the file extension of potentially executable files from user view in the panel.
- (CVE-2018-5177) Fixed a vulnerability in the XSLT component leading to a buffer overflow and crash if it occurs.
- (CVE-2018-5159) Fixed an integer overflow vulnerability in the Skia library resulting in possible out-of-bounds writes.
- (CVE-2018-5154) Fixed a use-after-free vulnerability while enumerating attributes during SVG animations with clip paths.
- (CVE-2018-5178) Fixed a buffer overflow during UTF8 to
Unicode string conversion within JavaScript with extremely large
amounts of data. This vulnerability requires the use of a malicious or
vulnerable extension in order to occur.
- Fixed several stability issues (crashes) and memory safety hazards.
- Windows 7/8/10/Server 2008 or later
- A processor with SSE2 instruction support
- 256 MB of free RAM (512 MB or more recommended)
- At least 150 MB of free (uncompressed) disk space
- 32x: Pale Moon - x32 builds
- 64x: Pale Moon - x64 builds
No comments:
Post a Comment