Mozilla Firefox Verson 122.0 Released with Security Updates

 Mozilla sent Firefox Version 122.0 to the release channel.  Firefox ESR was updated to Version 115.7.

The update includes fifteen security updates of which five (5) are rated high and ten (10) rated moderate.

High

#CVE-2024-0741: Out of bounds write in ANGLE

#CVE-2024-0742: Failure to update user input timestamp

#CVE-2024-0743: Crash in NSS TLS method

#CVE-2024-0744: Wild pointer dereference in JavaScript

#CVE-2024-0745: Stack buffer overflow in WebAudio

Moderate

#CVE-2024-0746: Crash when listing printers on Linux

#CVE-2024-0747: Bypass of Content Security Policy when directive unsafe-inline was set

#CVE-2024-0748: Compromised content process could modify document URI

#CVE-2024-0749: Phishing site popup could show local origin in address bar

#CVE-2024-0750: Potential permissions request bypass via clickjacking

#CVE-2024-0751: Privilege escalation through devtools

#CVE-2024-0752: Use-after-free could occur when applying update on macOS

#CVE-2024-0753: HSTS policy on subdomain could bypass policy of upper domain

#CVE-2024-0754: Crash when using some WASM files in devtools

#CVE-2024-0755: Memory safety bugs fixed in Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7

New

• Firefox now displays images and descriptions for search suggestions when provided by the search engine.
• The translations feature received an improvement in the quality of translated webpages. The results should be much more stable. This fixes issues where the content of a page could disappear when translated, or interactive widgets could break.
• Firefox now supports creating and using passkeys stored in the iCloud Keychain on macOS.
• MDN Web Docs article suggestions from Firefox Suggest will be available in the address bar for users searching for web development-related information.
• The line breaking rules of Web content now match the Unicode Standard. This improves Web Browser compatibility for line breaking. An additional improvement for East Asian and South East Asian end users, Firefox now supports proper language-aware word selection when double-clicking on text for languages including Chinese, Japanese, Burmese, Lao, Khmer, and Thai.
• Firefox now ships with a new .deb package for Linux users on Ubuntu, Debian, and Linux Mint.

Unresolved

• Some machines with older AMD CPUs may see image thumbnails incorrectly rendered as all black in file dialogs. If this is the case, updating the graphics driver should address this issue.

Update: To get the update now, select "Help" from the Firefox menu, then pick "About Firefox."  Mac users need to select "About Firefox" from the Firefox menu. If you do not use the English language version, Fully Localized Versions are available for download.

References

• Security Updates
• Release Notes
• Rapid Release Calendar
• ESR Release Notes

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...