Pale Moon Updates v 26.4.0
Pale Moon is an Open Source, Goanna-based web browser available for Microsoft Windows and Linux (with other operating systems in development), focusing on efficiency and ease of use. Make sure to get the most out of your browser!
Pale Moon offers you a browsing experience in a browser completely built from its own, independently developed source that has been forked off from Firefox/Mozilla code, with carefully selected features and optimizations to improve the browser’s speed*, resource use, stability and user experience, while offering full customization and a growing collection of extensions and themes to make the browser truly your own.
• Highly optimized for modern processors
•100% Firefox sourced: As safe as the browser that has seen years of development.
• Uses slightly less memory because of disabled redundant and optional code
• Significant speed increases for page drawing and script processing
• Stability: experience fewer browser crashes.
• Support for SVG and Canvas, and downloadable fonts including WOFF
• Support for HTML5 and WebGL (v4+)
• Support for Firefox extensions (add-ons), themes and personas
• Support for OOPP (Out-of-process plugin execution)
Pale Moon v26.4.0 Released
Pale Moon has been updated to 26.4.0, a security, web compatibility and bugfix release
Changes & Fixes:
• Removed Google Search as a bundled search provider. If desired, you can manually install it (or other search engines) after the update by following the steps in the Manage Search Engines topic.
• Fixed the URL API to allow « stringification » of the object per specification. This should make a number of websites happy.
• Added the ES6 string .includes() function in addition to the pre-existing .contains() function for checking if a string contains another string. The .contains() function is retained for compatibility with web and extension scripts that adhere to the ES6 pre-release specification up to and including RC3.
• Fixed the calculation of standalone SVG embeds width and height, which should solve some reported issues with html5 graphs being displayed incorrectly.
• Linux: improved memory allocation.
• Updated the graphite font library to 1.3.9.
• Added a blocking rule for F-Secure’s 64-bit deepguard library to prevent crashes.
• Updated the SQLite library to 3.13.0.
• Download= properties of links are now honored from the context menu « Save » option.
• Fixed a crash in the XSS filter.
• Fixed a crash in the DOM error module.
• Worked around a crash on Linux
• Linux: Improved optimization and GCC6 compatibility (Note: compiling with GCC 6 is still not recommended and it may or may not work, depending on your environment)
• (CVE-2016-5251)Potential URL spoofing in the address bar.
• (CVE-2016-0718) Context-dependent crash in expat 2.1.0.
• (CVE-2016-5266) Outgoing dataTransfer items are not properly filtered.
• Fixed potentially exploitable crash in the array splice implementation.
• Fixed potentially exploitable crash caused by badly formatted ICO files.
• (CVE-2016-5254) Heap-use-after-free in nsXULPopupManager::KeyDown