Iyo shanduro itsva kusunungurwa kubva kune yakakurumbira webhu bhurawuza Firefox 102 vhezheni umo dzimwe shanduko nekuvandudzwa kwakaitwa, mukuwedzera kune hunyanzvi uye kugadzirisa kwebug, muFirefox 102. yakabviswa 22 vulnerabilities, iyo 5 inoratidzirwa seine ngozi.
Kunetseka CVE-2022-34479 inobvumira kuratidza popup paLinux iyo inofukidza iyo kero bar. (inogona kushandiswa kutevedzera dummy browser interface inotsausa mushandisi, semuenzaniso we phishing).
Kunetseka CVE-2022-34468 inobvumira kutenderera kweCSP kurambidzwa izvo zvinodzivirira JavaScript kodhi kubva pakuurayiwa muiframe kuburikidza ne "javascript:" URI link substitution.
5 humwe hurema (yakapfupikiswa muCVE-2022-34485, CVE-2022-34485, uye CVE-2022-34484) zvinokonzerwa nezvinetso zvendangariro, senge buffer inofashukira uye kuwana kune yakatosunungurwa ndangariro nzvimbo. Nyaya idzi dzinogona kutungamira mukuitwa kwekodhi ine hutsinye kana mapeji akagadzirwa akavhurwa.
Main nhau muFirefox 102
Mune iyi vhezheni itsva yeFirefox 102 inoratidzwa, iyo mukana wekudzima otomatiki kuvhurwa kwepaneru neruzivo nezvemafaira akadhawunirotwa pakutanga kwekudhaunirodha kutsva kwega kwega.
Imwe shanduko inomira pachena ndeyekuti yakawedzera dziviriro kubva pakuchinja kwekutevera kune mamwe mapeji nekuisa parameter muURL. Dziviriro yacho inoderedzwa kusvika pakubvisa maparamendi anoshandiswa kutevedzera (senge utm_source) kubva kuURL uye inogadziriswa kana iyo yakasimba yekuvharisa spam modhi inogoneswa muzvirongwa (Enhanced Tracking Dziviriro -> Yakasimba) kana saiti painovhurwa mune yakavanzika nzira yekubhurawuza. . Optionally, kubviswa kunogona zvakare kugoneswa kuburikidza nesettings privacy.query_stripping.enabled in about:config.
Mufananidzo-mu-Mufananidzo modhi inopa zvinyorwa zvidiki kuneNdinoona mavhidhiyo kubva kuHBO Max, Funimation, Dailymotion, Tubi, Disney + Hotstar uye SonyLIV. Pakutanga, zvinyorwa zvidiki zvairatidzwa chete kuYouTube, Prime Vhidhiyo, Netflix, uye masaiti aishandisa iyo WebVTT (Web Vhidhiyo Chinyorwa Track) fomati.
MuFirefox yeAroid, kana uchizadza mafomu neruzivo rwekadhi rechikwereti, chikumbiro chakasiyana chinoitwa kuchengetedza ruzivo rwakaiswa yefomu rekuzadza system.
Pamusoro pezvo, zvinoratidzwawo kuti nyaya yakakonzera tsaona pakuvhura keyboard-pa-screen kana clipboard yaive nehuwandu hwe data yakagadziriswa, uye nyaya yakakonzera kuti Firefox imire kana ichichinja pakati pemaapplication yakagadziriswa zvakare.
Kana ari kunatsiridza kwekuvandudza, tinogona kuzviwana CSP kubatanidzwa kwakapihwa (Content-Security-Policy) neWebAssembly, ichikubvumidza kuti uise zvirambidzo zveCSP zveWebAssembly. Gwaro rakadzimwa scripting kuburikidza neCSP rave kutadza kushandisa WebAssembly bytecode kana 'unsafe-eval' kana 'wasm-unsafe-eval' parameter isina kuiswa.
CSS midhiya mibvunzo inoshandisa yekuvandudza pfuma, iyo inokubvumira kuti usunge chiyero chekuzorodza chemashoko anotsigirwa nemudziyo wekubuda.
Kune maplugins anotsigira yechipiri vhezheni yemanifest, kupinda kuScripting API kunopihwa, izvo zvinokutendera kuti umhanye zvinyorwa mumamiriro emasaiti, kutsiva nekubvisa CSS, uye kutonga kutema kwekugadzirisa zvinyorwa.
Yeimwe shanduko izvo zvinomira pachena:
- Inzwi decoding mabasa anofambiswa kune yakaparadzana maitiro ane yakasimba sandbox yekuzviparadzanisa nevamwe.
- PaLinux, zvinokwanisika kushandisa iyo Geoclue DBus sevhisi kuona nzvimbo.
- Yakavandudzwa kuratidzwa kwemagwaro ePDF mune yakanyanya kusiyanisa modhi.
- Iyo isiri-yakajairwa pfuma Window.sidebar, yakapihwa chete muFirefox, yakarongerwa kubviswa.
- Muwebhu yekuvandudza interface pasi peSitaera Edhita tebhu, pane rutsigiro rwekusefa mashiti nemazita.
Maitiro ekuisa kana kugadzirisa iyo nyowani vhezheni yeFirefox paLinux?
Vashandisi veFirefox vasina kuremadza otomatiki zvigadziriso vanogashira iyo yekuvandudza otomatiki. Avo vasingade kumirira kuti zviitike vanogona kusarudza Menyu> Rubatsiro> NezveFirefox mushure mekumisikidzwa zviri pamutemo kuti utange bhuku rekuvandudza webhurawuza.
Iyo skrini inovhura inoratidza iyo yazvino yakaiswa vhezheni yewebhu browser uye inomhanya cheki yekuvandudzwa, chero iko kushanda kuchigoneswa
Imwe sarudzo yekuvandudza, ndizvozvo uri mushandisi weUbuntu, Linux Mint kana chimwewo chinobva paUbuntu, Unogona kuisa kana kugadzirisa kune iyi nyowani vhezheni nerubatsiro rwePPA yebrowser.
Izvi zvinogona kuwedzerwa kuhurongwa nekuvhura terminal uye nekuita unotevera kuraira mairi:
sudo add-apt-repository ppa:ubuntu-mozilla-security/ppa -y sudo apt-get update sudo apt install firefox
Kana iri Arch Linux vashandisi uye zvigadzirwa, ingo mhanya mune terminal:
sudo pacman -Syu
Kana kuisa ne:
sudo pacman -S firefox
Finalmente kune avo vanosarudza kushandisa Snap mapakeji, ivo vachakwanisa kuisa iyo vhezheni itsva nekuvhura terminal uye kutaipa mairi
sudo snap install firefox
Chekupedzisira, iwe unogona kuwana bhurawuza neyazvino nzira yekuisa iyo yakawedzerwa "Flatpak". Kuti vaite izvi, ivo vanofanirwa kuve nerutsigiro rwemhando iyi yepakeji.
Kuisa kunoitwa nekunyora:
flatpak install flathub org.mozilla.firefox
Para zvimwe zvese zvekuparadzirwa kweLinux zvinogona kurodha pasi mabhagaari kubva chinotevera chinongedzo.
Ndinovimba firefox inogona kuwanazve pasi iyo yakarasika