Jump to content

Pale Moon Version 29.4.4 Released with Security Updates


Corrine
 Share

Recommended Posts

Pale Moon has been updated to version 29.4.4.  This is a security update.

 

Linux versions will follow shortly.

 

Changes/fixes:

  • Improved application library loading security. DiD
  • Fixed an issue in JavaScript serialization. DiD
  • Fixed a potential out-of-bounds issue in IndexedDB. DiD
  • Fixed a potential issue in widget data handling code. DiD
  • Fixed potentially exploitable crashes in handling truncated/corrupt media files or streams.
  • Fixed an issue in the DOM FileReader code.
  • Updated NSS to 3.52.3 to address a security issue.
  • Fixed the following security issues: CVE-2022-22736, CVE-2022-22741, CVE-2021-4140, CVE-2022-22746, CVE-2022-22744 and CVE-2022-22747.
  • Unified XUL Platform Mozilla Security Patch Summary: 8 fixed, 4 DiD, 17 not applicable.

*DiD This means that a fix is "Defense-in-Depth": It is a fix that does not apply to a (potentially) actively exploitable vulnerability in Pale Moon, but prevents future vulnerabilities caused by the same code, e.g. when surrounding code changes, exposing the problem, or when new attack vectors are discovered.


Pale Moon includes both 32- and 64-bit versions for Windows:  Pale Moon for Windows downloads.

 

Update:  To get the update now, select "Help" from the Pale Moon menu at the upper left of the browser window.  Select About Pale Moon > Check for Updates.

 

Release Notes
Release Cycle

Link to comment
Share on other sites

NSS to 3.52.3  ?? Is that a typo? NSS (network services security, i think) is up to 3.53 at least.

 

hmmm .....

Release notes for recent versions of NSS

The current Stable release of NSS is 3.66, which was released on 27 May 2021. (NSS 3.66 release notes)

The current ESR releases of NSS are 3.44.4 (NSS 3.44.4 release notes), intended for Firefox ESR 68, which was released on 19 May 2020, and  3.53.1 (NSS 3.53.1 release notes), intended for Firefox ESR 78, which was released on 16 June 2020.

 

Edited by crp
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

×
×
  • Create New...