Pale Moon 歷史版本列表
Pale Moon (32-bit)Pale Moon (64-bit)
更新時間:2014-11-14
更新細節:
What's new in this version:
Fixes/changes:
- New feature: multi-line flexbox support.
- Pale Moon now supports more advanced multi-line and multi-column flex elements. This will allow websites to use these elements for easier responsive design of web pages and ordering/layout of multiple elements. This has been on Pale Moon's to-do list for a while but was rather complex to tackle, hence the delay in implementation. This should address layout issues on several recently-updated websites (e.g. the MSN home page).
- New feature: added support for collapsed flex element items.
- Enhanced feature: Content Security Policy (CSP)
- Pale Moon now fully supports the CSP 1.0 specification allowing websites to set restrictions on content to prevent XSS (Cross-site scripting) attacks. Previously, the implementation in Pale Moon was partial, and did not support a number of features, resulting in some websites not rendering properly because Pale Moon was being too strict in enforcing the policy. This should address issues on websites enforcing CSP (e.g. the Dropbox web interface and FaceBook galleries).
- New feature: added support for iframes with inline content.
- Updated the Firefox Compatibility mode version to 31.9.
- With the improvements in rendering and overall feature set, the Firefox Compatibility mode (as presented in the UserAgent string) has been bumped to prevent websites from complaining about "using a too old/unsupported version of Firefox" (e.g. Google websites).
- Pale Moon no longer builds the so-called "media navigator" by default.
- This module provides access to the user's webcam and microphone. Although it can be used for other purposes, in practice this is only used for WebRTC and, in fact, its support (GetUserMedia) is often mistaken for actually supporting WebRTC in a browser (causing errors since Pale Moon does not support WebRTC). No longer including these features reduces input complexity and overhead for a feature not actively used. This also circumvents privacy concerns/confusion like CVE-2014-1586.
- Improved tab handling on lightweight themes (personas) some more to enhance contrast on certain themes and to make the tab hover effect slightly more distinct.
- Fixed oversized/blocky menu arrows on Windows 8.1 in HiDPI mode.
- Fixed incorrect operating system being passed on to addons.mozilla.org.
- Fixed an error being thrown in the error console/web console when opening a new window.
- Removed the NVidia 3D Vision auxiliary utility library.
- This library has been the likely cause for a number of crashes on NVidia cards, and is completely unnecessary for Pale Moon.
- Made the installer less aggressive for file type associations, to prevent "stealing" of globally associated file types.
- Android: improved restoring of session tabs.
- Android: added an option to automatically restore tabs.
- An important thing to note with this new option is the following: with the option enabled, Pale Moon will now automatically restore tabs you had open previously when the app gets suspended (pushed out of memory by other apps, closed by swipe, etc.). The "quit" main menu option, however, completely shuts down your session, unloads Pale Moon from active memory, and tabs will not be automatically restored when you launch Pale Moon again. This is by design. To restore tabs in that situation, use the link from the home screen.
- Fixed memory security hazards CVE-2014-1574 and CVE-2014-1575 security fix
- Fixed CVE-2014-1581. security fix
- Fixed bug 1069584: Bail if a cairo surface is in an invalid state. security fix
- Made sure to initialize surfaces for draw targets. security fix
- Fixed bug 1074280: Use AsContainerLayer() in order to avoid a bad cast. security fix
- Fixed several problems in the HTML parser. security fix
- Improved security of XHR by filtering out types of requests that can potentially be abused. security fix
更新時間:2014-11-14
更新細節:
What's new in this version:
Fixes/changes:
- New feature: multi-line flexbox support.
- Pale Moon now supports more advanced multi-line and multi-column flex elements. This will allow websites to use these elements for easier responsive design of web pages and ordering/layout of multiple elements. This has been on Pale Moon's to-do list for a while but was rather complex to tackle, hence the delay in implementation. This should address layout issues on several recently-updated websites (e.g. the MSN home page).
- New feature: added support for collapsed flex element items.
- Enhanced feature: Content Security Policy (CSP)
- Pale Moon now fully supports the CSP 1.0 specification allowing websites to set restrictions on content to prevent XSS (Cross-site scripting) attacks. Previously, the implementation in Pale Moon was partial, and did not support a number of features, resulting in some websites not rendering properly because Pale Moon was being too strict in enforcing the policy. This should address issues on websites enforcing CSP (e.g. the Dropbox web interface and FaceBook galleries).
- New feature: added support for iframes with inline content.
- Updated the Firefox Compatibility mode version to 31.9.
- With the improvements in rendering and overall feature set, the Firefox Compatibility mode (as presented in the UserAgent string) has been bumped to prevent websites from complaining about "using a too old/unsupported version of Firefox" (e.g. Google websites).
- Pale Moon no longer builds the so-called "media navigator" by default.
- This module provides access to the user's webcam and microphone. Although it can be used for other purposes, in practice this is only used for WebRTC and, in fact, its support (GetUserMedia) is often mistaken for actually supporting WebRTC in a browser (causing errors since Pale Moon does not support WebRTC). No longer including these features reduces input complexity and overhead for a feature not actively used. This also circumvents privacy concerns/confusion like CVE-2014-1586.
- Improved tab handling on lightweight themes (personas) some more to enhance contrast on certain themes and to make the tab hover effect slightly more distinct.
- Fixed oversized/blocky menu arrows on Windows 8.1 in HiDPI mode.
- Fixed incorrect operating system being passed on to addons.mozilla.org.
- Fixed an error being thrown in the error console/web console when opening a new window.
- Removed the NVidia 3D Vision auxiliary utility library.
- This library has been the likely cause for a number of crashes on NVidia cards, and is completely unnecessary for Pale Moon.
- Made the installer less aggressive for file type associations, to prevent "stealing" of globally associated file types.
- Android: improved restoring of session tabs.
- Android: added an option to automatically restore tabs.
- An important thing to note with this new option is the following: with the option enabled, Pale Moon will now automatically restore tabs you had open previously when the app gets suspended (pushed out of memory by other apps, closed by swipe, etc.). The "quit" main menu option, however, completely shuts down your session, unloads Pale Moon from active memory, and tabs will not be automatically restored when you launch Pale Moon again. This is by design. To restore tabs in that situation, use the link from the home screen.
- Fixed memory security hazards CVE-2014-1574 and CVE-2014-1575 security fix
- Fixed CVE-2014-1581. security fix
- Fixed bug 1069584: Bail if a cairo surface is in an invalid state. security fix
- Made sure to initialize surfaces for draw targets. security fix
- Fixed bug 1074280: Use AsContainerLayer() in order to avoid a bad cast. security fix
- Fixed several problems in the HTML parser. security fix
- Improved security of XHR by filtering out types of requests that can potentially be abused. security fix
更新時間:2014-10-26
更新細節:
What's new in this version:
Fixes/changes:
- Added a "Firefox compatibility mode" selection in Options -> Advanced.
- This mode is enabled by default (reluctantly so), because too many websites (including some very big players who, themselves, promote an Open Web...) still use very poor browser detection methods based on arbitrary User Agent string comparisons, not catering to alternative browsers, and the resulting user experience being poor (being presented with mobile site layouts, broken pages, or even being flat-out refused service because someone exercises freedom of choice for web browser used). This should alleviate most, if not all, issues with browser-discriminating websites.
- Improved active tab display on particularly dark personas.
- People using "black" personas/lightweight themes should now have a lot less difficulty distinguishing the active tab.
- Disabled SSL 3.0 by default (to put a muzzle on the POODLE).
- Please note that this may cause issues with some poorly configured web servers (usually ones with a hopelessly broken security setup that do not support TLS 1.2 or secure (re)negotiation of the protocol).
- Fixed add-on update issue (that was preventing update checking through addons.palemoon.org).
- Fixed the redundant redundancy in asking redundantly if the browser would be allowed to ask to install an extension when not on addons.mozilla.org.
- Fixed the internal UA-sniffing insanity that broke devtools in a few different and colorful ways.
更新時間:2014-10-26
更新細節:
What's new in this version:
Fixes/changes:
- Added a "Firefox compatibility mode" selection in Options -> Advanced.
- This mode is enabled by default (reluctantly so), because too many websites (including some very big players who, themselves, promote an Open Web...) still use very poor browser detection methods based on arbitrary User Agent string comparisons, not catering to alternative browsers, and the resulting user experience being poor (being presented with mobile site layouts, broken pages, or even being flat-out refused service because someone exercises freedom of choice for web browser used). This should alleviate most, if not all, issues with browser-discriminating websites.
- Improved active tab display on particularly dark personas.
- People using "black" personas/lightweight themes should now have a lot less difficulty distinguishing the active tab.
- Disabled SSL 3.0 by default (to put a muzzle on the POODLE).
- Please note that this may cause issues with some poorly configured web servers (usually ones with a hopelessly broken security setup that do not support TLS 1.2 or secure (re)negotiation of the protocol).
- Fixed add-on update issue (that was preventing update checking through addons.palemoon.org).
- Fixed the redundant redundancy in asking redundantly if the browser would be allowed to ask to install an extension when not on addons.mozilla.org.
- Fixed the internal UA-sniffing insanity that broke devtools in a few different and colorful ways.
更新時間:2014-10-18
更新細節:
What's new in this version:
Security fixes:
- Update of the add-on SDK to add missing "Pale Moon" engine entries to lists. This should fix extension compatibility issues for jetpack extensions that otherwise already work with the new GUID.
- About box release notes link corrected
- Fix for VP9 decoder vulnerability security fix
- Fix for direct access to raw connection sockets in http security fix
- Fix for unsafe conversion to JSON of data through the alarm dom element security fix
- Update of NSS to 3.16.2.2-RTM security fix
更新時間:2014-10-18
更新細節:
What's new in this version:
Security fixes:
- Update of the add-on SDK to add missing "Pale Moon" engine entries to lists. This should fix extension compatibility issues for jetpack extensions that otherwise already work with the new GUID.
- About box release notes link corrected
- Fix for VP9 decoder vulnerability security fix
- Fix for direct access to raw connection sockets in http security fix
- Fix for unsafe conversion to JSON of data through the alarm dom element security fix
- Update of NSS to 3.16.2.2-RTM security fix
更新時間:2014-10-09
更新細節:
What's new in this version:
Fixes/changes:
- Change of the browser's GUID (Globally Unique Identifier) to properly differentiate from Firefox.
- The new GUID is {8de7fcbb-c55c-4fbe-bfc5-fc555c87dbc4}.
- Allow extensions with both Pale Moon GUID and Firefox GUID to be installed natively (dual-ID system).
- Pale Moon GUID blocks will have preference over Firefox (compatibility) blocks.
- Disconnect of Pale Moon's "Firefox compatibility" version from Pale Moon's application version to maintain Firefox 24.* extension compatibility regardless of Pale Moon version.
- Disable Firefox Compatibility mode by default.
- This means Pale Moon will no longer have a Firefox/xx.xx indicator in its UserAgent string.
- This may impact some websites that check browsers by UserAgent and possibly warn, complain or block you. You should contact the site's owners and request support for Pale Moon. Pale Moon will allow you to override the UserAgent on a per-site basis if you absolutely must visit the site and they absolutely won't cater to your freedom of browser choice.
- Use the alternative sync implementation on a new server.
- Current Pale Moon sync accounts cannot be ported over, so you will have to create a new account when updating to v25.
- The previous server implementation has already been shut down due to continued issues, and will be retired on the very short term to free up infrastructure and reduce expenses. The alternative sync implementation is Sync 1.1 compatible, like before.
- Stop building the WebApp runtime by default.
- The use of "Web Applications" started from the command-line is such a niche feature that it has no business being in Pale Moon's main-line builds.
- If you need the WebApp runtime for your specific organization and want to use Pale Moon, you can build Pale Moon from source with the feature enabled.
- Stop supporting Windows XP. As mentioned a few times before, Pale Moon's support for Windows XP (and any other NT 5.x based operating system) has now ended. An exception to this is the specialized Atom build because of limited operating system availability on netbooks and the like. More details on the dedicated page for this change.
- By default, do not sync add-ons.
- Syncing between different devices will likely not want you to sync the add-ons in use. There's a reason you're using different devices, after all.
- Un-prefix CSS box-sizing.
- You can now use box-sizing:border-box, box-sizing:padding-box and box-sizing:content-box to switch box-sizing mode on elements using CSS.
- Implement image-orientation in CSS.
- You can now use image-orientation: {angle} [flip] in CSS to rotate images in 90 degree steps and optionally flip them.
- Improve bookmark menu item-dragging.
- Dragging bookmarks in the bookmarks menu is now more convenient (allow diagonal dragging, prevent tooltips from interfering, etc.).
- (Fixes bugs 225434, 419911 and 555474)
- Move the option to "use the classic downloads window" from status bar preferences to the main options window.
- This way, it's easier for people to find and it's in a much more logical place. The classic downloads window will not go away any time soon in Pale Moon.
- Update branding images for official/unofficial logo, and some about: pages.
- Add a new type of "blank new tab" page with logo-styling.
- This logo page will be the default setting (instead of about:blank).
- Add Opus audio to WebM.
- Add VP9 codec to WebM on both desktop and Android/ARM.
- Allow absolute-in-relative positioning in table and CSS table-cell elements.
- Allow the user to override the use of accessibility colors in the browser with browser.display.ignore_accessibility_theme
- Improve the display of tabs when lightweight themes (personas) are in use for both light and dark themes.
- Enable cache compression by default to more efficiently use disk cache.
- When shutting down the browser while you still have downloads in progress, Pale Moon will now by default warn you that the downloads will be cancelled.
- Added language packs for Acholi, Assamese, Kashubian, Pulaar Fulfulde, Armenian, Khmer, Ligure, Mongolian, and Swahili. Bug/regression fixes:
- Prevent error in removeobserver() for the padlock code when closing a window
- Hang fix: Release XPCOM timer immediately after firing to prevent a race condition. (CVE-2014-1553)
- Android & any ARM processor: Always use integers for audio instead of floats.
- Properly apply the use of high contrast themes on Windows 8/8.1
- Prevent the accumulation of hidden about:blank windows in some situations.
- Android: prevent deadlocks due to invalidations when using plugins (Flash)
- Re-enable high-quality downscaling of particularly large images (selective HQ downscaling) and improve fast image scaling method (use Lanczos instead of Hamming)
- Hang/DoS fix: Avoid uninterruptable infinite loops in IonMonkey in some situations. (CVE-2014-1548)
- Android: improve the handling of zooming to input fields Security fixes:
- Properly derive/insert the host of a URL
- Avoid negative audio ratios (can lead to crashes) (CVE-2014-1565)
- Avoid some root hazards in the style parser
- Add is-object check to IonBuilder::makeCallHelper (CVE-2014-1562)
- Clear the jumplist icon cache when history is cleared (privacy fix)
- Crash fix on Windows (JS JIT) (CVE-2014-1554)
- Prevent buffer overrun in text directionality component (CVE-2014-1567)
- Update NSS to 3.16.2.1-RTM (CVE-2014-1568)
更新時間:2014-10-09
更新細節:
What's new in this version:
Fixes/changes:
- Change of the browser's GUID (Globally Unique Identifier) to properly differentiate from Firefox.
- The new GUID is {8de7fcbb-c55c-4fbe-bfc5-fc555c87dbc4}.
- Allow extensions with both Pale Moon GUID and Firefox GUID to be installed natively (dual-ID system).
- Pale Moon GUID blocks will have preference over Firefox (compatibility) blocks.
- Disconnect of Pale Moon's "Firefox compatibility" version from Pale Moon's application version to maintain Firefox 24.* extension compatibility regardless of Pale Moon version.
- Disable Firefox Compatibility mode by default.
- This means Pale Moon will no longer have a Firefox/xx.xx indicator in its UserAgent string.
- This may impact some websites that check browsers by UserAgent and possibly warn, complain or block you. You should contact the site's owners and request support for Pale Moon. Pale Moon will allow you to override the UserAgent on a per-site basis if you absolutely must visit the site and they absolutely won't cater to your freedom of browser choice.
- Use the alternative sync implementation on a new server.
- Current Pale Moon sync accounts cannot be ported over, so you will have to create a new account when updating to v25.
- The previous server implementation has already been shut down due to continued issues, and will be retired on the very short term to free up infrastructure and reduce expenses. The alternative sync implementation is Sync 1.1 compatible, like before.
- Stop building the WebApp runtime by default.
- The use of "Web Applications" started from the command-line is such a niche feature that it has no business being in Pale Moon's main-line builds.
- If you need the WebApp runtime for your specific organization and want to use Pale Moon, you can build Pale Moon from source with the feature enabled.
- Stop supporting Windows XP. As mentioned a few times before, Pale Moon's support for Windows XP (and any other NT 5.x based operating system) has now ended. An exception to this is the specialized Atom build because of limited operating system availability on netbooks and the like. More details on the dedicated page for this change.
- By default, do not sync add-ons.
- Syncing between different devices will likely not want you to sync the add-ons in use. There's a reason you're using different devices, after all.
- Un-prefix CSS box-sizing.
- You can now use box-sizing:border-box, box-sizing:padding-box and box-sizing:content-box to switch box-sizing mode on elements using CSS.
- Implement image-orientation in CSS.
- You can now use image-orientation: {angle} [flip] in CSS to rotate images in 90 degree steps and optionally flip them.
- Improve bookmark menu item-dragging.
- Dragging bookmarks in the bookmarks menu is now more convenient (allow diagonal dragging, prevent tooltips from interfering, etc.).
- (Fixes bugs 225434, 419911 and 555474)
- Move the option to "use the classic downloads window" from status bar preferences to the main options window.
- This way, it's easier for people to find and it's in a much more logical place. The classic downloads window will not go away any time soon in Pale Moon.
- Update branding images for official/unofficial logo, and some about: pages.
- Add a new type of "blank new tab" page with logo-styling.
- This logo page will be the default setting (instead of about:blank).
- Add Opus audio to WebM.
- Add VP9 codec to WebM on both desktop and Android/ARM.
- Allow absolute-in-relative positioning in table and CSS table-cell elements.
- Allow the user to override the use of accessibility colors in the browser with browser.display.ignore_accessibility_theme
- Improve the display of tabs when lightweight themes (personas) are in use for both light and dark themes.
- Enable cache compression by default to more efficiently use disk cache.
- When shutting down the browser while you still have downloads in progress, Pale Moon will now by default warn you that the downloads will be cancelled.
- Added language packs for Acholi, Assamese, Kashubian, Pulaar Fulfulde, Armenian, Khmer, Ligure, Mongolian, and Swahili. Bug/regression fixes:
- Prevent error in removeobserver() for the padlock code when closing a window
- Hang fix: Release XPCOM timer immediately after firing to prevent a race condition. (CVE-2014-1553)
- Android & any ARM processor: Always use integers for audio instead of floats.
- Properly apply the use of high contrast themes on Windows 8/8.1
- Prevent the accumulation of hidden about:blank windows in some situations.
- Android: prevent deadlocks due to invalidations when using plugins (Flash)
- Re-enable high-quality downscaling of particularly large images (selective HQ downscaling) and improve fast image scaling method (use Lanczos instead of Hamming)
- Hang/DoS fix: Avoid uninterruptable infinite loops in IonMonkey in some situations. (CVE-2014-1548)
- Android: improve the handling of zooming to input fields Security fixes:
- Properly derive/insert the host of a URL
- Avoid negative audio ratios (can lead to crashes) (CVE-2014-1565)
- Avoid some root hazards in the style parser
- Add is-object check to IonBuilder::makeCallHelper (CVE-2014-1562)
- Clear the jumplist icon cache when history is cleared (privacy fix)
- Crash fix on Windows (JS JIT) (CVE-2014-1554)
- Prevent buffer overrun in text directionality component (CVE-2014-1567)
- Update NSS to 3.16.2.1-RTM (CVE-2014-1568)
更新時間:2014-09-14
更新細節:
What's new in this version:
Fixes/changes:
- Use (i) icon for error console informational messages instead of (?)
- Properly derive and insert the host of a URL security fix
- Avoid negative audio ratios. security fix
- Release XPCOM timer immediately after firing to prevent a race condition.
- Add is-object check to IonBuilder::makeCallHelper. security fix
更新時間:2014-09-14
更新細節:
What's new in this version:
Fixes/changes:
- Use (i) icon for error console informational messages instead of (?)
- Properly derive and insert the host of a URL security fix
- Avoid negative audio ratios. security fix
- Release XPCOM timer immediately after firing to prevent a race condition.
- Add is-object check to IonBuilder::makeCallHelper. security fix