From 4ea252a577a1f55d800ff5c19b75a40a18914d53 Mon Sep 17 00:00:00 2001 From: B Stack Date: Thu, 21 Feb 2019 00:53:50 +0000 Subject: palemoon 28.4.0 dpkg --- palemoon/debian/changelog | 28 ++++++++++++++++++++++++++++ 1 file changed, 28 insertions(+) (limited to 'palemoon') diff --git a/palemoon/debian/changelog b/palemoon/debian/changelog index 1536ba0..54456ae 100644 --- a/palemoon/debian/changelog +++ b/palemoon/debian/changelog @@ -1,3 +1,31 @@ +palemoon (28.4.0-1devuan) manual; urgency=low + + * Import new 28.4.0 major development and security release: + - Removed more telemetry code from the platform. + - Fixed implementation of the IntersectionObserver API to avoid crashes, and enabled it by default. + - Switched to the new ffmpeg decode API to avoid dropping of frames. + - Fixed a buffering issue in the WebP decoder that caused intermittent browser crashes. + - Improved resource-efficiency for internal stopwatch timers. + - Improved handling of incorrectly-encoded CTTS in media files, resolving some playback issues of videos. + - Improved the Cycle Collector and Garbage Collector. + - Improved fullscreen navigation bar handling in the situation it has focus when switching to full screen. + - Aligned instanceof with the final ES6 spec. + - Improved Windows DIB (bitmap) clipboard data handling. + - Exposed TLS 1.3 cipher suite prefs in about:config in case people want to disable them individually. + - Allowed empty string on the location.search setter to clear URL query parameters from JS. + - Added a potential fix for external links not opening in the current window/tab (untested). + - Enabled C++11 thread-safe statics in the entire application. + - Updated several preferences for integration with the new add-ons site. + * Security fixes: + - Fixed a potential use-after-free in IndexedDB code. (DiD) + - Improved proxy handling to avoid localhost getting proxied. (CVE-2018-18506) + - Ported upstream Skia fixes. (CVE-2018-18356, CVE-2018-18335) + - Fixed an additional Skia issue. (CVE-2019-5785) + - Fixed several potentially-exploitable memory safety hazards and crashes. (DiD) + - Fixed a possible data race when performing compacting GC. + + -- B Stack Wed, 20 Feb 2019 16:42:43 -0500 + palemoon (28.3.1-1devuan) manual; urgency=medium * Initial build for devuan -- cgit