Is Pale Moon Susceptible to 'Coinbase', mfsa2019-18?
CVE-2019-11707: Type confusion in Array.pop
http://tenfourfox.blogspot.com/2019/06/ ... spill.html
A kind reminder we would like all registered users to weigh in on one of our forum's security policies.
Please take a moment to read this thread and place a vote.
https://forum.palemoon.org/viewtopic.php?f=17&t=32935
Please take a moment to read this thread and place a vote.
https://forum.palemoon.org/viewtopic.php?f=17&t=32935
Is Pale Moon Susceptible to 'Coinbase'?
Forum rules
Please keep everything here strictly on-topic.
This board is meant for Pale Moon source code development related subjects only like code snippets, patches, specific bugs, git, the repositories, etc.
This is not for tech support! Please do not post tech support questions in the "Development" board!
Please make sure not to use this board for support questions. Please post issues with specific websites, extensions, etc. in the relevant boards for those topics.
Please keep things on-topic as this forum will be used for reference for Pale Moon development. Expect topics that aren't relevant as such to be moved or deleted.
Please keep everything here strictly on-topic.
This board is meant for Pale Moon source code development related subjects only like code snippets, patches, specific bugs, git, the repositories, etc.
This is not for tech support! Please do not post tech support questions in the "Development" board!
Please make sure not to use this board for support questions. Please post issues with specific websites, extensions, etc. in the relevant boards for those topics.
Please keep things on-topic as this forum will be used for reference for Pale Moon development. Expect topics that aren't relevant as such to be moved or deleted.
-
therube
- Board Warrior
- Posts: 1750
- Joined: 2018-06-08, 17:02
-
Moonchild
- Pale Moon guru
- Posts: 38503
- Joined: 2011-08-28, 17:27
- Location: Sweden
Re: Is Pale Moon Susceptible to 'Coinbase'?
For the record: We are not vulnerable to the exploit patched in the most recent Firefox point releases. You may breathe easy. We will still be looking at the code and (if prudent) apply defense-in-depth for futureproofing, of course.
https://twitter.com/palemoonbrowser/sta ... 2260123648
https://twitter.com/palemoonbrowser/sta ... 2260123648
"There is no point in arguing with an idiot, because then you're both idiots." - Anonymous
"Seek wisdom, not knowledge. Knowledge is of the past; wisdom is of the future." -- Native American proverb
"Linux makes everything difficult." -- Lyceus Anubite
"Seek wisdom, not knowledge. Knowledge is of the past; wisdom is of the future." -- Native American proverb
"Linux makes everything difficult." -- Lyceus Anubite
-
ibmhal5678
Re: Is Pale Moon Susceptible to 'Coinbase'?
What's going on with Firefox?
https://www.mozilla.org/en-US/security/ ... sa2019-18/
Seems they are adressing another security issue:
https://www.mozilla.org/en-US/security/ ... sa2019-19/
I had two/three updates for FirefoxQuantum/FFESR today.
https://www.mozilla.org/en-US/security/ ... sa2019-18/
Seems they are adressing another security issue:
https://www.mozilla.org/en-US/security/ ... sa2019-19/
I had two/three updates for FirefoxQuantum/FFESR today.
-
Moonchild
- Pale Moon guru
- Posts: 38503
- Joined: 2011-08-28, 17:27
- Location: Sweden
Re: Is Pale Moon Susceptible to 'Coinbase'?
https://www.mozilla.org/en-US/security/advisories/mfsa2019-19/
i.e.: Yet another electrolysis (multi-process) inter-process communication vulnerability that doesn't apply to UXP.Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes can result in the non-sandboxed parent process opening web content chosen by a compromised child process.
"There is no point in arguing with an idiot, because then you're both idiots." - Anonymous
"Seek wisdom, not knowledge. Knowledge is of the past; wisdom is of the future." -- Native American proverb
"Linux makes everything difficult." -- Lyceus Anubite
"Seek wisdom, not knowledge. Knowledge is of the past; wisdom is of the future." -- Native American proverb
"Linux makes everything difficult." -- Lyceus Anubite