Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: Reddit Facebook
Pale Moon 27.8.3 (2018-03-28) Released
#1
https://www.palemoon.org/releasenotes.shtml       Pale Moon: Release notes
27.8.3 (2018-03-28)
This is a small update to address a pervasive crashing issue.

Changes/fixes:

    Backed out some responsive layout code that caused intermittent but not uncommon crashes in the browser depending on window sizes and page content.    :     https://www.palemoon.org/palemoon-win32.shtml        Download Pale Moon x86 - 27.8.3
New this release: Details about this update can be found in the Release notes.
These downloads are the most compatible version of Pale Moon.

Minimum System Requirements:

    Windows Vista*/Windows 7/8/10/Server 2008 or later
    Windows Platform Update (Vista/7) strongly recommended
    A processor with SSE2 instruction support
    256 MB of free RAM (512 MB or more recommended)
    At least 150 MB of free (uncompressed) disk space
 Download locations
File size for the installer is 31.2 MiB

SHA-256: c97838cfe49850775d8c0b3ffe7d51f351c018c6a927785bb62beac5b268c083
(to check your download, you can use a tool like WinHasher)
GPG/PGP signature: [Sig]     Link (click to download)
    Description
Pale Moon logo
    Pale Moon mirror #1 (EU)
Direct download link
Pale Moon logo     Pale Moon mirror #2 (US)
Direct download link
Pale Moon logo     Pale Moon mirror #3 (Asia)
Direct download link
Download Crew logo
    Download Crew
Download link at the top of the page (next to the title)
FileHorse logo     FileHorse
Download link at the top-right of the page
FileCroco logo     FileCroco
Reply
#2
https://www.palemoon.org/releasenotes.shtml         Pale Moon: Release notes
27.9.0 (2018-04-17)
This is the last major development update for the v27 milestone (codenamed "Tycho").
After this, we will be focusing our efforts for new features entirely on UXP and the new v28 milestone building on it. We will continue to support v27.9 with security and stability updates for a while, but no major new features will be added from this point forward.

Changes/fixes:
Fixed a number of spec compliance issues in our media subsystem.
Added a trailing slash to referrers when policy is set to fix some web compatibility issues.
Fixed the property order in Object.getOwnPropertyNames(string) and others for web compatibility.
Updated RegExp(RegExp object, flags) to the ES6 standard specification.
Changed the embedded font from the no longer free EmojiOne to the open-licensed Twemoji (with additional fixes). This also further extends unicode support to Unicode 10 emoji(s). Please note that as a result, color emoji(s) will look different than before.
Adjusted some things in our memory allocator code to provide, among other things, better allocation alignment on Windows.
Made the attempt to migrate people from the old sync server domain name to the current one more aggressive. We will be retiring the old pmsync.palemoon.net Sync server address shortly to remove the need for us to maintain a security certificate for it; this preference migration should automatically put everyone on the correct server address (pmsync.palemoon.org) when upgrading.
Made reading of the sessionstore synchronous, to speed up startup and prevent the homepage from being loaded when restoring a session.
Added a fix to switch to the correct window/tab when a web notification is clicked.
Changed the placeholder text to not include "Search" when all search functions from the address bar are disabled.
Enabled the use of Skia for canvas on Linux and OSX.
Worked around a potential cause for some non-standard bitmapped fonts ending up with incorrect line heights (I'm looking at you, Noto fonts!).
Added a workaround for incorrectly-encoded JPEG-XR images with planar alpha. Ultimately, the jxrlib reference implementation should be fixed to encode according to spec.
Aligned XCTO:nosniff allowed script MIME types with the updated spec.
Improved the logic for storing vector images in the surface cache.
Fixed character set handling for XMLHttpRequests.  : https://www.palemoon.org/palemoon-win32.shtml      Download Pale Moon x86 - 27.9.0     Minimum System Requirements:
Windows Vista*/Windows 7/8/10/Server 2008 or later
Windows Platform Update (Vista/7) strongly recommended
A processor with SSE2 instruction support
256 MB of free RAM (512 MB or more recommended)
At least 150 MB of free (uncompressed) disk space     Download locations
File size for the installer is 31.1 MiB

SHA-256: b324db9c0a1ee42fa75ca722b7d2c84e4f0ef9adf22dc25588fce16cdf02ada8
(to check your download, you can use a tool like WinHasher)
GPG/PGP signature: [Sig]      Link (click to download)
Description
Pale Moon logo
Pale Moon mirror #1 (EU)
Direct download link
Pale Moon logo Pale Moon mirror #2 (US)
Direct download link
Pale Moon logo Pale Moon mirror #3 (Asia)
Direct download link
Download Crew logo
Download Crew
Download link at the top of the page (next to the title)
FileHorse logo FileHorse
Download link at the top-right of the page
FileCroco logo FileCroco :  100% Scanned Malware Free & Clean With Avast Antivirus Free & Not Digitally Signed
Reply
#3
http://www.palemoon.org/releasenotes.shtml        Pale Moon: Release notes
27.9.2 (2018-05-18)
This is a security and stability update.

Changes/fixes:
We changed the language strings for softblocked items so people will cry less when we do our job.
(CVE-2018-5174) Prevent potential SmartScreen bypass on Windows 10.
(CVE-2018-5173) Fixed an issue in the Downloads panel improperly rendering some Unicode characters, allowing for the file name to be spoofed. This could be used to obscure the file extension of potentially executable files from user view in the panel.
(CVE-2018-5177) Fixed a vulnerability in the XSLT component leading to a buffer overflow and crash if it occurs.
(CVE-2018-5159) Fixed an integer overflow vulnerability in the Skia library resulting in possible out-of-bounds writes.
(CVE-2018-5154) Fixed a use-after-free vulnerability while enumerating attributes during SVG animations with clip paths.
(CVE-2018-5178) Fixed a buffer overflow during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This vulnerability requires the use of a malicious or vulnerable extension in order to occur. 
Fixed several stability issues (crashes) and memory safety hazards.  : http://www.palemoon.org/palemoon-win32.shtml         Download Pale Moon x86 - 27.9.2
New this release: Details about this update can be found in the Release notes.
These downloads are the most compatible version of Pale Moon.

Minimum System Requirements:
Windows Vista*/Windows 7/8/10/Server 2008 or later
Windows Platform Update (Vista/7) strongly recommended
A processor with SSE2 instruction support
256 MB of free RAM (512 MB or more recommended)
At least 150 MB of free (uncompressed) disk space

*Our support for Windows Vista is limited. Please consider upgrading your O.S. if you are having trouble with the browser.
Download locations
File size for the installer is 31.1 MiB

SHA-256: 4df0dbd0fc253da61aa16edf66e9bdcadf5104270124afe4130b6d303ccbfa28
(to check your download, you can use a tool like WinHasher)
GPG/PGP signature: [Sig]

Link (click to download)
Description
Pale Moon logo
Pale Moon mirror #1 (EU)
Direct download link
Pale Moon logo Pale Moon mirror #2 (US)
Direct download link
Pale Moon logo Pale Moon mirror #3 (Asia)
Direct download link
Download Crew logo
Download Crew
Download link at the top of the page (next to the title)
FileHorse logo FileHorse
Download link at the top-right of the page
FileCroco logo FileCroco
100% Scanned Malware Free & Clean With Kaspersky Total Security & (Not Digitally Signed Software ) Application: Pale Moon  Vendor : (Moonchild Productions) Unknown ( Kaspersky Security Netowork) Fewer than 10 Kaspersky Security Network users have used this application.
Reply
#4
http://www.palemoon.org/releasenotes.shtml            Pale Moon: Release notes
27.9.4 (2018-07-17)
This is a security and usability update.

Changes/fixes:

    Updated the useragent for addons.mozilla.org to work around their "Only with Firefox" discrimination preventing users from downloading themes, old versions of extensions, and other files with Pale Moon.
    Restricted web access to the moz-icon:// scheme that could potentially be abused to infringe the user's privacy.
    Prevented various location-based threats. DiD
    Fixed a potential vulnerability with plugins being redirected to different origins (CVE-2018-12364).
    Improved the security check for launching executable files (by association) on Windows from the browser. For users who have (most likely accidentally) granted a system-wide waiver for opening these kinds of files without being prompted, this permission has been reset.
    Fixed an issue with invalid qcms transforms (CVE-2018-12366).
    Fixed a buffer overflow using the computed size of canvas elements (CVE-2018-12359).
    Fixed a use-after-free when using focus() (CVE-2018-12360).
    Added some sanity checks on nsMozIconURI. DiD
    Fixed an issue in the case the preferences file in the profile would not be writable (e.g. temporary permission issues due to backup, virus scanning or similar external processes).

DiD This means that the fix is "Defense-in-Depth": It is a fix that does not apply to a (potentially) actively exploitable vulnerability in Pale Moon, but prevents future vulnerabilities caused by the same code, e.g. when surrounding code changes, exposing the problem, or when new attack vectors are discovered.

100% Scanned Malware Free & Clean With Kaspersky Total Security & Not Signed This Version Trusted ( Kaspersky Security Network)
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Pale Moon 29.4.2 New Released mrtrout 0 516 11-10-2021 , 01:20 AM
Last Post: mrtrout
  Pale Moon v28.7.0 Released mrtrout 0 1,488 08-29-2019 , 11:42 PM
Last Post: mrtrout
  Pale Moon 28.0.0 Released mrtrout 4 2,468 12-06-2018 , 11:20 PM
Last Post: mrtrout
  VirtualBox 5.2.6 (released 2018-01-15) Released mrtrout 6 3,687 11-09-2018 , 07:32 PM
Last Post: mrtrout
  TweakPower v1.016 (07 Aug 2018) Released mrtrout 0 1,471 08-08-2018 , 01:25 AM
Last Post: mrtrout



Users browsing this thread: 3 Guest(s)