MoonchildProductions/Pale-Moon
MoonchildProductions
/
Pale-Moon
17
18
Fork 16
Code Issues 16 Pull Requests Releases 84 Activity

84 Releases 449 Tags

  • 29.1.0_Release 6758ce9877

    Pale Moon 29.1.0 Stable

    Moonchild released this 2021-03-02 10:09:58 +00:00 | 386 commits to release since this release

    This is a development, bugfix and security update.

    New features:

    • Language packs for the following newly-supported languages:
      • Arabic (ar)
      • Chinese Traditional (zh-TW)
      • Croatian (hr)
      • Danish (da)
      • Finnish (fi)
      • Galician (gl)
      • Indonesian (id)
      • Icelandic (is)
      • Japanese (ja)
      • Romanian (ro)
      • Serbian (cyrillic) (sr)
      • Slovenian (sl)
      • Thai (th)
    • Implemented String.prototype.replaceAll().
    • Implemented JSON superset proposal.
    • Implemented well-formed JSON stringify.
    • Implemented numeric separators in JavaScript.

    Changes/fixes:

    • Updated timezone data to 2021a.
    • Updated the wording and inclusion of more select license blocks in about:license.
    • Updated some site-specific user-agent overrides for web compatibility.
    • Updated the lz4 library for performance and security updates.
    • Improved performance of JSON stringify.
    • Further improved support for building on FreeBSD.
    • Fixed a regression where changes to useragent compatibility required a restart to take effect.
    • Fixed a regression where AES-GCM in WebCrypto ("subtle" crypto API) wasn't working.
    • This could make certain login procedures fail to work.
    • Fixed a full browser deadlock when page scripting would flood browsing history with rapid location state changes.
    • Disabled AV1 codec use by default again since our implementation has significant streaming issues (particularly audio) that needs further work.
    • Added required interaction with file/folder open dialog boxes on html file input elements on some operating systems to avoid malicious content tricking users into uploading sensitive files unintentionally (related to CVE-2021-23956).
    • Added a font sanity check to avoid triggering a potential vulnerability on unpatched Windows operating systems (related to CVE-2021-24093).
    • Security issues addressed: CVE-2021-23974, CVE-2021-23973 and several memory safety hazards that don't have CVE numbers.
    • Unified XUL Platform Mozilla Security Patch Summary: 4 fixed, 2 DiD, 19 not applicable.

    Built with the Unified XUL Platform - March 2, 2021 release.

    Downloads