Mozilla sent Firefox Version 113.0 to the release channel. The update includes thirteen security updates of which five (5) are rated high, seven (7) moderate, and one (1) rated low.
Firefox ESR was updated to Version 102.11.
High
#CVE-2023-32205: Browser prompts could have been obscured by popups
#CVE-2023-32206: Crash in RLBox Expat driver
#CVE-2023-32207: Potential permissions request bypass via clickjacking
#CVE-2023-32215: Memory safety bugs fixed in Firefox 113 and Firefox ESR 102.11
#CVE-2023-32216: Memory safety bugs fixed in Firefox 113
Moderate
#CVE-2023-32208: Leak of script base URL in service workers via import()
#CVE-2023-32209: Persistent DoS via favicon image
#CVE-2023-32210: Incorrect principal object ordering
#CVE-2023-32211: Content process crash due to invalid wasm code
#CVE-2023-32212: Potential spoof due to obscured address bar
#CVE-2023-32213: Potential memory corruption in FileReader:oReadData()
#MFSA-TMP-2023-0002: Race condition in dav1d decoding
Low
#CVE-2023-32214: Potential DoS via exposed protocol handlers
New
Say hello to enhanced Picture-in-Picture! Rewind, check video duration, and effortlessly switch to full-screen mode on the web's most popular video websites.
Firefox's address bar is already a great place to search for what you're looking for. Now you'll always be able to see your web search terms and refine them while viewing your search's results - no additional scrolling needed! Also, a new result menu has been added making it easier to remove history results and dismiss sponsored Firefox Suggest entries.
Private windows now protect users even better by blocking third-party cookies and storage of content trackers.
Passwords automatically generated by Firefox now include special characters, giving users more secure passwords by default.
Firefox 113 introduces a redesigned accessibility engine which significantly improves the speed, responsiveness, and stability of Firefox when used with:
Importing bookmarks from Safari or a Chrome-based browser? The favicons for those bookmarks will now also be imported by default to make them easier to identify.
Firefox 113 now supports AV1 Image Format files containing animations (AVIS), improving support for AVIF images across the web.
The Windows GPU sandbox first shipped in the Firefox 110 release has been tightened to enhance the security benefits it provides.
A 13-year-old feature request was fulfilled and Firefox now supports files being drag-and-dropped directly from Microsoft Outlook. A special thanks to volunteer contributor Marco Spiess for helping to get this across the finish line!
Users on macOS can now access the Services sub-menu directly from Firefox context menus.
On Windows, the elastic overscroll effect has been enabled by default. When two-finger scrolling on the touchpad or scrolling on the touchscreen, you will now see a bouncing animation when scrolling past the edge of a scroll container.
Firefox is now available in the Tajik (tg) language.
Changed
The long-deprecated
mozRTCPeerConnection
,mozRTCIceCandidate
, andmozRTCSessionDescription
WebRTC interfaces have been removed. Sites should utilize the non-prefixed versions instead.
Update: To get the update now, select "Help" from the Firefox menu, then pick "About Firefox." Mac users need to select "About Firefox" from the Firefox menu. If you do not use the English language version, Fully Localized Versions are available for download.
References
No comments:
Post a Comment