Corrine Posted June 10, 2015 Share Posted June 10, 2015 The complete list of fixes, changes and additions is available in the Release Notes. In addition to the fixing the Logjam vulnerability (DHE keys with less than 1024 key bits refused), the following additional security fixes are included in the update: Security fixes: Fixes for miscellaneous memory safety hazards (relevant and applicable fixes from CVE-2015-2708 and CVE-2015-2709) DiD (defense-in-depth) fix to prevent potential overflows in CSS restyling Fix for updater hijacking (CVE-2015-2720) Fix to prevent potential disclosure of sensitive information in Android logs (CVE-2015-2714) Fix for a buffer overflow in the XML parser (CVE-2015-2716) Fix for a potentially exploitable crash in DNS handling Of interest to some users is the addition of a preference for always preferring a certain dictionary language. To use this, create a new preference spellchecker.dictionary.override (string) and set it to your language code. 1 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.