We'll be here if you need anything.

Welcome back

Hello Linux Forum!   It's been a few years, but I decided it was time to get back into my profile and update things and perhaps become active again.   Last summer I ditched Windows 10 on my main PC for Xubuntu Linux. With the end of Windows 10 support coming in October, I've been talking to my parents about what they want to do with their PC (it's not Windows 11 compatible) and I think I've got them convinced to transition over to Linux Mint. Most of what they do with their PC can be done on through an Internet browser or on their tablets, so it's not worth it for them to buy a new PC.   I thought perhaps it was time to revisit these forums in case I find issues that could use some human input instead of just Google searches and old Linux forum posts to fix. I might have a potential issue on my PC, and who knows what might happen when my parents make the jump to Linux Mint when I'm not around to monitor their computer.

Pale Moon has been updated to version 33.8.1. This is a bugfix and security update. Changes/fixes: Pale Moon no longer accepts nameless cookies. See implementation notes. Improved the "copy as curl" command in devtools further, partially rolling back the DiD changes in previous versions since we aren't offering cross-platform commands and it caused potential issues with overzealous escaping. Fixed a potential use-after-free scenario in the CSS parser. Fixed uninitialized use of fontconfig scenarios for Linux/GTK. Adjusted CSP URI reporting to more closely match the current spec and common browser behavior. Fixed a potential crash in font handling. Adjusted the size of WASM compiled table size limits to match V8/Gecko. Increased restrictions on the types of data loads <object> elements are allowed to trigger, to match the fetch spec more closely. Fixed build issues for PPC architectures. Security issues addressed: CVE-2025-8031, CVE-2025-8028 (DiD), CVE-2025-8037 (and related), CVE-2025-8029, and several others that do not have a CVE number. Implementation notes: From this version forward we no longer accept nameless cookies. If a cookie has no name and starts with an equal sign, it is outright rejected. If a cookie consists only of a string with no equal sign, it is interpreted as a valueless cookie with the name set to the string. This departs from our inherited Mozilla behavior where this was previously treated as a nameless cookie with the string as the value. RFC 6265 forbids cookies without an equal sign (§5.2 step 2), but browsers accept them anyway for web compatibility reasons (poor web design). Moreover, §5.2 step 5 explicitly forbids nameless cookies. Valueless names also make more sense in web context: Set-cookie: itself supports secure and httponly as valueless attributes, and HTML supports valueless attributes as well. Our new behavior therefore makes more logical sense, is closer to the spec and general principles, aligns with webkit/Safari and solves a whole class of potential sec bugs like CVE-2025-8037. Apologies if this causes web compat issues, but it's the same thing to do when encountering non-compliant cookies. Pale Moon includes both 32- and 64-bit versions for Windows: Pale Moon for Windows downloads. Update: To get the update now, select "Help" from the Pale Moon menu at the upper left of the browser window. Select About Pale Moon > Check for Updates. Release Notes Release Cycle