Pale Moon Version 32.0.1 Released with Security Updates

[Corrine]

Pale Moon has been updated to version 32.0.1.  This is a bugfix and security update.

 

Changes/Fixes:

• Fixed a crash in the new regular expression code.
• Added {Extended_Pictographic} unicode property escape to regular expressions.
• Fixed a regression in regular expressions for literal parsing of invalid ranges.
• Updated NSS to pick up fixes.
• Security issues addressed: CVE-2023-25733 DiD, CVE-2023-25739 DiD and CVE-2023-0767.
• UXP Mozilla security patch summary: 1 fixed, 2 DiD, 14 not applicable.
  

Notes:

DiD: This means that a fix is "Defense-in-Depth": It is a fix that does not apply to a (potentially) actively exploitable vulnerability in Pale Moon, but prevents future vulnerabilities caused by the same code, e.g. when surrounding code changes, exposing the problem, or when new attack vectors are discovered.

 

Rejected security patches: This means that patches were theoretically applicable to our code but considered undesirable, which could be due to unwanted changes in behavior, known regressions caused by the patches, or unnecessary risks for stability, security or privacy.

 

Pale Moon includes both 32- and 64-bit versions for Windows: Pale Moon for Windows downloads.

 

Update: To get the update now, select "Help" from the Pale Moon menu at the upper left of the browser window.  Select About Pale Moon > Check for Updates.

 

Release Notes