Friday, April 10, 2020

Pale Moon Version 28.9.1 Released With Security Updates


Pale Moon
Pale Moon version 28.9.1 has been released.  The update is a minor bugfix and security update. 

The update includes DiD ("Defense-in-Depth") updates.  A DiD update is s a fix that does not apply to a (potentially) actively exploitable vulnerability in Pale Moon, but prevents future vulnerabilities caused by the same code, e.g. when surrounding code changes, exposing the problem, or when new attack vectors are discovered.
From the Release Notes

  • Re-imported the ExtensionStorage js module for use by browser extensions.
  • Fixed an issue with the WebRequest module having erroneously un-processed build directives in it. This might have caused some subtle breakage.
  • Removed the use of high-resolution Windows system timers from the layout refresh driver; this should help with some performance and battery life issues.
  • Fixed an issue where various parts of hardware acceleration weren't properly linked when changing the option from preferences.
    If you have changed the preferences option to "use hardware acceleration when available" between 28.9.0 and this release, it is recommended that you go into preferences and toggle the option off/on to the preferred setting to correct any discrepancies.
  • Fixed an issue with building the user-agent string using the build date as ID.
  • Fixed an issue with the release of document content viewers (CVE-2020-6819). DiD
  • Fixed an issue with handling functions with rest parameters. DiD
  • Unified XUL Platform Mozilla Security Patch Summary: 2 Defense-in-depth, 14 not applicable.

Linux versions for this update will follow very shortly.


UpdateTo get the update now, select "Help" from the Pale Moon menu at the upper left of the browser window.  Click About Pale Moon and  Check for Updates.


Release Notes


Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...


No comments: