2022/08/08 Pale Moon v31.2.0.1 がきてたっぱね

02:16

著者: かっぱ

カテゴリー: パソコン・インターネット, 雑記, IT技術ネタ?

タグ:Firefox, タブブラウザ, Pale, Moon, 31.2.0.1

Firefox派生タブブラウザ PaleMoonの話っぱの** The Pale Moon Project homepage**https://www.palemoon.org/

地味に8月2日位にアプデ来てたみたいっぱね

前記事は2022/07/09 Pale Moon 31.1.1 来てるっぱね

 

3・4回位前回のアプデ時にフォーラムで今後の方針に関して告知があり**大化けしたので**見てない方は確認してきたほうがいい予感っぱ

日本語化は何時もなら↓のでいいはずだっぱが…**Pale Moon - Add-ons - Japanese (JP) https://addons.palemoon.org/addon/pm-langpack-ja/


Pale Moon - Release Notes -

http://www.palemoon.org/releasenotes.shtml  

General notes: DiD This means that a fix is “Defense-in-Depth”: It is a fix that does not apply to a (potentially) actively exploitable vulnerability in Pale Moon, but prevents future vulnerabilities caused by the same code, e.g. when surrounding code changes, exposing the problem, or when new attack vectors are discovered. Rejected security patches: This means that patches were theoretically applicable to our code but considered undesirable, which could be due to unwanted changes in behavior, known regressions caused by the patches, or unnecessary risks for stability, security or privacy. v31.2.0.1 (2022-08-03)

This is a small out-of-band update to address the fact that the final builds did not include the intended NSS library update. v31.2.0 (2022-08-02)

This is a major bugfix and development update. Special thanks to Athenian200, Jobbautista9, Martok and dbsoft for their contributions this cycle :)

Changes/fixes:

  • Implemented CSS white-space: break-spaces for web compatibility.
  • Implemented Intl.RelativeTimeFormat for web compatibility.
  • Implemented “Origin header CSRF mitigation”. This is still disabled by default to investigate potential issues with CloudFlare-backed sites.
  • Implemented support for async generator methods in JavaScript.
  • Added preliminary support for building on Apple Silicon like M1/M2 SoC.
  • Added support for building with Visual Studio 2022.
  • Improved the handling of CSS “sticky” elements in tables.
  • Improved stack size limits on all platforms. See implementation notes.
  • Updated function.toString handling to align with the updated JavaScript spec. This should improve web compatibility.
  • Updated Unicode support to Unicode v11, and updated the ICU library accordingly. Building without ICU is no longer supported.
  • Updated many in-tree third-party libraries to pick up various performance and stability improvements.
  • Updated site-specific user-agent overrides to work around issues with Google fonts, Citi bank (again!) and MeWe.
  • Removed some leftover (and unused) telemetry code in the platform and front-end.
  • Fixed an issue with VP9 video playback on Windows on some systems.
  • Fixed an issue with the add-ons manager not properly handling empty update URLs.
  • Fixed a major performance regression on *nix based systems due to incorrect thread handling.
  • Fixed volume handling when building with the sndio audio back-end.
  • Pale Moon no longer applies content security policies to documents that are explicitly loaded as data documents or to images. See implementation notes.
  • Cleaned up some unnecessary code from the source tree for unused build back-ends, Firefox marketplace “apps”, and the rather ridiculous moz://a protocol handler.
  • Updated NSS to 3.52.8 to pick up several defense-in-depth security fixes.
  • UXP Mozilla security patch summary: 3 DiD, 12 not applicable.

Implementation notes:

  • Prior to this version, Pale Moon would apply Content Security Policies (CSPs) to all requests made to servers that would respond with a policy header, as one would expect for strict use of CSPs as-intended. Unfortunately, Chrome has been less strict in applying these policies and specifically excluded applying these policies to images and “data documents”. As a result, web compatibility became a problem for non-Google browsers with webmasters being oblivious about their overzealous CSPs deployed on websites, causing images (especially SVG) and data to not load or load properly. To align with mainstream browser behavior and improve web compatibility on misconfigured websites, we are now no longer applying CSPs to images or documents explicitly loaded as arbitrary data.
  • We’ve adjusted default per-thread stack sizes in the platform to be more generous on all platforms. This allows the browser to render more deeply nested visual elements in web pages and the new limit matches the capabilities of mainstream browsers as a result. Please note that some custom builds may need to adjust their linker’s stack sizes on some operating systems to come to a stable and usable build with this change since the new Goanna rendering depth requires this larger stack size to not run out of memory. The default per-thread stack size is now 2 MB with the exception of 32-bit Windows builds where 1.5 MB is used to go easy on its limited address space. Custom Linux builds with system-default small stack sizes should adjust their build configuration accordingly.

 

 


8月3日の分はNSSライブラリの更新で抜けがあったのの追加みたいっぱ

8月2日のメインのアップデートはバグ修正と開発アップデートなそうな

WEB互換性のための複数の実装とJavascriptの非同期ジェネレーターメソッドの対応実装

ビルドを新しくして対応したとか色々書いてあるけども特に考えずアップデートしておけば良さそうっぱ(*p’Θ’q)ゥン(こら

ただちに影響はなさそうな気がするっぱが…

自作アドオンや古いアドオンをどうしても動かしたりする人はこれからも使い続けるだろうっぱ?

そうではない方は

LibreWolf****https://librewolf.net/

こちらも忘れずに(´・Θ・`) 

LibreWolfはPrivacy対策がしっかりしてるけど常時プライベートウィンドウで使うような人用の気がするっぱ **FAQを読むと日本語化したりせず使ったほうがいいような気がするっぱよ?土台がFirefoxの新しいものから 余計な足跡拾いそうな実装を消し飛ばしたブラウザなので用途に応じてブラウザの使い分けが大事っぱよ?

かっぱでしたっぱ♪


それにしても日本の海域に弾道ミサイルとか案の定飛んできたっぱねぇ(´・Θ・`)

民主党政権の尖閣諸島の事件を思い出すっぱね

そこからずっと荒れたままだけど報道が少ない地域なのでそこを取材し報道する機関には頑張って欲しい所っぱ