Pale Moon 歷史版本列表 Page75

更新時間：2015-03-25
更新細節：

What's new in this version:

- This is a security update to the browser to address a critical vulnerability found in the pwn2own contest. Only one vulnerability found in this contest applies to Pale Moon, which has been addressed in this update.

Fixes/changes:
- Fixed security vulnerability CVE-2015-0818. This vulnerability would allow remote attackers to bypass the Same Origin Policy and execute arbitrary JavaScript code with chrome privileges via vectors involving SVG hash navigation.
- Fixed IPv6 DNS resolution regression in some less common cases.

更新時間：2015-03-25
更新細節：

What's new in this version:

- This is a security update to the browser to address a critical vulnerability found in the pwn2own contest. Only one vulnerability found in this contest applies to Pale Moon, which has been addressed in this update.

Fixes/changes:
- Fixed security vulnerability CVE-2015-0818. This vulnerability would allow remote attackers to bypass the Same Origin Policy and execute arbitrary JavaScript code with chrome privileges via vectors involving SVG hash navigation.
- Fixed IPv6 DNS resolution regression in some less common cases.

更新時間：2015-03-13
更新細節：

更新時間：2015-03-13
更新細節：

更新時間：2015-03-06
更新細節：

What's new in this version:

- This is a bugfix release for a bug introduced in 4.5.2 that prevented interaction with panoramas on older iOS Devices (iOS <=7)

更新時間：2015-03-06
更新細節：

What's new in this version:

- This is a bugfix release for a bug introduced in 4.5.2 that prevented interaction with panoramas on older iOS Devices (iOS <=7)

更新時間：2015-01-28
更新細節：

What's new in this version:

- This is a small update to address cookie handling through proxies causing issues for some authenticating proxies in corporate environments.

更新時間：2015-01-28
更新細節：

What's new in this version:

- This is a small update to address cookie handling through proxies causing issues for some authenticating proxies in corporate environments.

更新時間：2015-01-15
更新細節：

What's new in this version:

This is an important update after rapid development on the back-end to extend browser capabilities and implement some ES6 draft functions for web programmers, as well as provide some important crashfixes, bugfixes and security updates. Fixes/changes: ES6: Added the following functions:
- Array.prototype.find and Array.prototype.findIndex
- IsConstructor(arg)
- Array.of(items...)
- Number.parseInt and Number.parseFloat
- Advanced math functions: hyperbolic sin/cos/tan/asin/acos/atan, hypotenuse, cube root, expm1, log1p, log10, log2, sign and trunc
- Map.prototype.forEach and Set.prototype.forEach
- ES6: Added the following number constants: EPSILON, MIN_SAFE_INTEGER and MAX_SAFE_INTEGER
- ES6: Added the use of binary and octal numeric literals (&b... and &o...)
- ES6: Updated behavior of accessing indexed values in accordance with the spec.
- CSS: Added overflow-clip-box:content-box|padding-box
- DOM: Added table.createTBody() function
- Added a clearer alltabs button for dark personas.
- Added a development tools toggle hotkey (F12)
- Added a preference prompts.tab_modal.focusSwitch to enable or disable tab switching when a modal dialog (e.g. javascript confirmation) is presented in a page.
- IonMonkey on Android: fixed the implementation of AbsI.
- IonMonkey: fixed a bug where actively used objects were discarded.
- Fixed register initialization to prevent incorrect detection of SIMD instructions on some CPUs.
- Optimized some loops in the spell checker to increase performance.
- Simplified cache handling, updated cache parameters to better reflect current web use, and enabled automatic cache sizing by default.
- Adjusted memory cache sizing to better reflect capacities of current hardware.
- Updated UserAgent override workarounds for Netflix and FaceBook to fix some site issues.
- Aligned programmatic access to geolocation with the spec.
- Fixed a crash when being fed a data file (XML) with too deeply nested tags.
- Fixed a crash in HTML5/WebAudio that affected some games.
- Fixed a crash when programmatically collapsing elements.
- Fixed a few non-breaking bugs related to e10s code.
- Fixed text input/padding issues.
- Updated surround downmixing code for Vorbis.
- Improved tolerance in WebAudio for loading multichannel audio files.
- Android: Fixed an issue with Flash, it should now run on more devices.
- Updated the DDG search plugin to make the actual query be the last parameter in the address bar for easy editing after a search has been performed.
- Removed some unused update channel code.
- Updated branding to more clearly indicate Pale Moon's trademark.
- Updated some licensing texts in-browser to properly reflect used code and rights. Security/privacy fixes:
- Added a preference network.stricttransportsecurity.enabled to enable or disable the use of HSTS (HTTP Strict Transport Security), allowing users to choose between privacy and security in this matter. (hidden pref)
- Fixed CVE-2014-1589 by whitelisting XBL bindings that may be applied to untrusted content.
- Important: extension developers should read this related thread.
- Fixed CVE-2014-1593.
- Mac: fixed CVE-2014-1595.
- Fixed CVE-2014-8639 by adjusting cookie handling through proxies.
- Fixed CVE-2014-8636.
- Fixed several memory safety hazards that do not have CVE numbers.

更新時間：2015-01-15
更新細節：

What's new in this version:

This is an important update after rapid development on the back-end to extend browser capabilities and implement some ES6 draft functions for web programmers, as well as provide some important crashfixes, bugfixes and security updates. Fixes/changes: ES6: Added the following functions:
- Array.prototype.find and Array.prototype.findIndex
- IsConstructor(arg)
- Array.of(items...)
- Number.parseInt and Number.parseFloat
- Advanced math functions: hyperbolic sin/cos/tan/asin/acos/atan, hypotenuse, cube root, expm1, log1p, log10, log2, sign and trunc
- Map.prototype.forEach and Set.prototype.forEach
- ES6: Added the following number constants: EPSILON, MIN_SAFE_INTEGER and MAX_SAFE_INTEGER
- ES6: Added the use of binary and octal numeric literals (&b... and &o...)
- ES6: Updated behavior of accessing indexed values in accordance with the spec.
- CSS: Added overflow-clip-box:content-box|padding-box
- DOM: Added table.createTBody() function
- Added a clearer alltabs button for dark personas.
- Added a development tools toggle hotkey (F12)
- Added a preference prompts.tab_modal.focusSwitch to enable or disable tab switching when a modal dialog (e.g. javascript confirmation) is presented in a page.
- IonMonkey on Android: fixed the implementation of AbsI.
- IonMonkey: fixed a bug where actively used objects were discarded.
- Fixed register initialization to prevent incorrect detection of SIMD instructions on some CPUs.
- Optimized some loops in the spell checker to increase performance.
- Simplified cache handling, updated cache parameters to better reflect current web use, and enabled automatic cache sizing by default.
- Adjusted memory cache sizing to better reflect capacities of current hardware.
- Updated UserAgent override workarounds for Netflix and FaceBook to fix some site issues.
- Aligned programmatic access to geolocation with the spec.
- Fixed a crash when being fed a data file (XML) with too deeply nested tags.
- Fixed a crash in HTML5/WebAudio that affected some games.
- Fixed a crash when programmatically collapsing elements.
- Fixed a few non-breaking bugs related to e10s code.
- Fixed text input/padding issues.
- Updated surround downmixing code for Vorbis.
- Improved tolerance in WebAudio for loading multichannel audio files.
- Android: Fixed an issue with Flash, it should now run on more devices.
- Updated the DDG search plugin to make the actual query be the last parameter in the address bar for easy editing after a search has been performed.
- Removed some unused update channel code.
- Updated branding to more clearly indicate Pale Moon's trademark.
- Updated some licensing texts in-browser to properly reflect used code and rights. Security/privacy fixes:
- Added a preference network.stricttransportsecurity.enabled to enable or disable the use of HSTS (HTTP Strict Transport Security), allowing users to choose between privacy and security in this matter. (hidden pref)
- Fixed CVE-2014-1589 by whitelisting XBL bindings that may be applied to untrusted content.
- Important: extension developers should read this related thread.
- Fixed CVE-2014-1593.
- Mac: fixed CVE-2014-1595.
- Fixed CVE-2014-8639 by adjusting cookie handling through proxies.
- Fixed CVE-2014-8636.
- Fixed several memory safety hazards that do not have CVE numbers.