Firefox 126 is here: Extra safety, much less monitoring, and sooner Facebook
In the brand new Firefox version 126.0, Mozilla builders possess fastened quite loads of vulnerabilities within the browser. Higher recordsdata compression must calm load Facebook pages sooner. Way more monitoring parameters are blocked when copying web addresses. Updates to Firefox ESR 115.11 and Tor Browser 13.0.1 are also available.
The builders possess fastened on the least 16 vulnerabilities in Firefox 126.0. Mozilla categorizes two of these vulnerabilities as excessive chance in its safety document . A use-after-free vulnerability (CVE-2024-4764) would possibly maybe maybe maybe advance to gentle and develop into exploitable if WebRTC is old more intensively (e.g. during video conferences) and a brand new audio source is added. A lacking kind trace within the built-in PDF viewer PDF.js would possibly maybe maybe maybe initiate up the chance of executing arbitrary JavaScript code on this context (CVE-2024-4367).
Some vulnerabilities would possibly maybe maybe maybe allow an attacker to enact injected code. Attacks on Firefox users are now not yet identified. With the menu item ” Again ” About Firefox, that you just would be capable of maybe also provoke an update take a look at and download the update manually if required.
Here is new in Firefox 126
Mozilla advertises on the What’s new web page that that you just would be capable of maybe also edit PDF recordsdata in Firefox and on this case system that that you just would be capable of maybe also pick up out forms. On the other hand, this would now not focus on over with trusty PDF forms which would be designed to be filled out on a computer. Pretty, it refers to PDFs that handiest watch as within the occasion that they are going to also be filled in, but which possess to be printed out. Such PDFs will also be filled within the utilization of Firefox and its rudimentary functions for editing PDF recordsdata (and then printed out if required). Really, here is now not indubitably new.
What is typically new, alternatively, is toughen for the “zstd” recordsdata compression system for online page material. This compression is old by Facebook, as an illustration. With zstd, recordsdata will also be compressed more with the identical CPU load or processed with much less CPU load with the identical compression.
The Mozilla builders possess extra improved the chance available since Firefox 120 to make a choice up away monitoring parameters from a web address (URL) when copying it to the clipboard. The monitoring of tidy web shops will also be filtered out. AV1 movies can now also be played relief hardware-accelerated beneath macOS if an Apple M3 processor (or more moderen) is old.
Updates for Firefox ESR and Tor Browser
Firefox ESR 115 has been updated to version 115.11.0, in which the builders possess closed on the least six gaps. An update can be available for the Tor Browser in response to Firefox ESR. The brand new Tor Browser 13.0.15 (for Windows, macOS, Linux and Android) is in response to Firefox 115.11. A brand new edition of the mail programme Thunderbird is now not yet available.
The Mozilla subsidiary MZLA has also released Thunderbird 115.11.0, which used to be on the starting up handiest available as an update for existing users. The builders possess fastened on the least six vulnerabilities, handiest one amongst which is actually appropriate excessive chance. Here is CVE-2024-4367, the JavaScript vulnerability within the PDF viewer PDF.js already talked about in Firefox 126. A lot of bug fixes are slightly straightforward and more of a beauty nature.
Mozilla plans to unlock Firefox 127 and Firefox ESR 115.12 on June 11, with the subsequent releases to use at four-week intervals except the finish of November (Firefox 133). In the summer, the muse for Firefox ESR will alternate from Firefox 115 to Firefox 128.
This article on the starting up looked on our sister publication PC-WELT and used to be translated and localized from German.