Pale Moon 20.2

Published July 3, 2013 by Download Software

Pale Moon is the next generation of custom-built and optimized Firefox-based browsers. Drawing on the brand new Gecko 2 engine, Pale Moon has the following features:

  • Hardware acceleration of browser windows using Direct3D
  • Direct2D rendering on operating systems and hardware that support it
  • DirectWrite font rendering on systems that support it
  • WebGL 3D graphics, either using native OpenGL (default) or DirectX (via ANGLE)
  • HTML5 support
  • New Jaegermonkey javascript engine
  • Blazingly fast DOM handling

System Requirements:

  • Operating System: Windows All Version
  • Language: English-US
  • License: Freeware
  • Author: The Pale Moon

Changelog:

Changes:
  • Implementation of some conservative additional multi-core support (mainly in graphics/media) using OpenMP. I'm taking baby steps here and will remain conservative in the use of multiple cores so stability of the browser isn't needlessly endangered.
  • Update of the navigation button icons (again). Users have clearly indicated that the inverted color icons on glass and dark themes were less desirable. I've listened, and changed the icons for glass back to the pre-20 style but with added contrast, and made a distinction for dark personas (themes) where the icons are now simply inverted white (like in Firefox).
  • Change for the color management system (CMS) so that Pale Moon now supports more types of embedded ICC profiles (including the already decade-old version 4 spec) and in the process fixing potential color issues on screens with images that embed such profiles.
  • Update of the browser padlock code. You can now choose both a "modern" look (as introduced in version 19) and a "classic" look (as introduced in version 15, when this padlock feature was first added). It also removes some phantom spacing in locations where the padlock isn't used (thanks for the pointer, Sowmoots!).
Fixes:
  • (CVE-2013-1692) Fix for the inclusion of body data in an XMLHttpRequest HEAD request, making cross-site request forgery (CSRF) attacks via a crafted web site more difficult.
  • (CVE-2013-1697) Fix to restrict use of DefaultValue for method calls, which allows remote attackers to execute arbitrary JavaScript code with chrome privileges.
  • (CVE-2013-1694) Fix to properly handle the lack of a wrapper, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code.
  • Fix to prevent arbitrary code execution from the profiler developer tool.
  • Fix for a crash when rapidly reloading pages.
  • Fix for cross-document selections.
  • Fixes for several crashes in JavaScript.
  • Fixes for several memory safety hazards and uncommon memory leaks.


| Download

Sponsored Links (What this)


Readers Comments (0)


Comments are closed.

Latest Update

Rufus 4.0.2035

Rufus is an utility that helps format and create bootable USB flash drives, such as USB keys/pendrives, memory sticks, etc. It can be especially useful ... Download »

Subscribe

Sign up to receive daily email updates of Srcwb.net latest software update. Enter your email address below: