Fixes/changes:
- ES6: Added the following functions:
- Array.prototype.find
- Array.prototype.findIndex
- IsConstructor(arg)
- Array.of(items...)
- Number.parseInt
- Number.parseFloat
- Advanced math functions: hyperbolic sin/cos/tan/asin/acos/atan, hypotenuse, cube root, expm1, log1p, log10, log2, sign and trunc
- Map.prototype.forEach
- Set.prototype.forEach
- ES6: Added the following number constants: EPSILON, MIN_SAFE_INTEGER and MAX_SAFE_INTEGER
- ES6: Added the use of binary and octal numeric literals (&b... and &o...)
- ES6: Updated behavior of accessing indexed values in accordance with the spec.
- CSS: Added overflow-clip-box:content-box|padding-box
- DOM: Added table.createTBody() function
- Added a clearer alltabs button for dark personas.
- Added a development tools toggle hotkey (F12)
- Added a preference prompts.tab_modal.focusSwitch to enable or disable tab switching when a modal dialog (e.g. javascript confirmation) is presented in a page.
- IonMonkey on Android: fixed the implementation of AbsI.
- IonMonkey: fixed a bug where actively used objects were discarded.
- Fixed register initialization to prevent incorrect detection of SIMD instructions on some CPUs.
- Optimized some loops in the spell checker to increase performance.
- Simplified cache handling, updated cache parameters to better reflect current web use, and enabled automatic cache sizing by default.
- Adjusted memory cache sizing to better reflect capacities of current hardware.
- Updated UserAgent override workarounds for Netflix and FaceBook to fix some site issues.
- Aligned programmatic access to geolocation with the spec.
- Fixed a crash when being fed a data file (XML) with too deeply nested tags.
- Fixed a crash in HTML5/WebAudio that affected some games.
- Fixed a crash when programmatically collapsing elements.
- Fixed a few non-breaking bugs related to e10s code.
- Fixed text input/padding issues.
- Updated surround downmixing code for Vorbis.
- Improved tolerance in WebAudio for loading multichannel audio files.
- Android: Fixed an issue with Flash, it should now run on more devices.
- Updated the DDG search plugin to make the actual query be the last parameter in the address bar for easy editing after a search has been performed.
- Removed some unused update channel code.
- Updated branding to more clearly indicate Pale Moon's trademark.
- Updated some licensing texts in-browser to properly reflect used code and rights.
- Added a preference network.stricttransportsecurity.enabled to enable or disable the use of HSTS (HTTP Strict Transport Security), allowing users to choose between privacy and security in this matter. (hidden pref)
- Fixed CVE-2014-1589 by whitelisting XBL bindings that may be applied to untrusted content.
Important: extension developers should read this related thread. - Fixed CVE-2014-1593.
- Mac: fixed CVE-2014-1595.
- Fixed CVE-2014-8639 by adjusting cookie handling through proxies.
Important: This may currently impact some corporate Single-Sign-On (SSO) setups through proxies which will be inconvenienced by asking for credentials instead of automatically logging in. Firefox 35 and ESR are impacted the same way, and I'm keeping an eye on relevant bugs and potential solutions. - Fixed CVE-2014-8636.
- Fixed several memory safety hazards that do not have CVE numbers.