Pale Moon has been updated to version 34.2.1. This is a bugfix and security update.
A large audit of security issues was performed. Many security issues were addressed, including potential crash scenarios and code correctness issues.
As a summary: 50 potential vulnerabilities were found applicable and fixed, 20 issues had DiD* code changes applied, and 4 were already mitigated before being reported.
Of the reported vulnerabilities, 270 were not applicable to Pale Moon code (with the vast majority pertaining to e10s/multi-process browser architecture) and 6 low-impact ones were marked for further investigation at a later time.
Notes:
For FreeBSD users: the binaries from this version forward require FreeBSD v14 or later.
*DiD: This means that a fix is "Defense-in-Depth": It is a fix that does not apply to a (potentially) actively exploitable vulnerability in Pale Moon, but prevents future vulnerabilities caused by the same code, e.g. when surrounding code changes, exposing the problem, or when new attack vectors are discovered.
Pale Moon includes both 32- and 64-bit versions for Windows: Pale Moon for Windows downloads.
Update: To get the update now, select "Help" from the Pale Moon menu at the upper left of the browser window. Select About Pale Moon > Check for Updates.
Remember - "A day without laughter is a day wasted."
No comments:
Post a Comment
Neither spam nor comments containing vulgarities will be approved.