Firefox 150 has been released, along with updates to previous long-term support branches—140.10.0 and 115.35.0. Firefox 151, scheduled for release on May 19, will be moving into beta testing in the coming hours.
Key new features in Firefox 150 (1, 2, 3):
- A total of 359 vulnerabilities were fixed (56 vulnerabilities were grouped under CVE-2026-6784, 155 under CVE-2026-6785, 110 under CVE-2026-6786, and the remaining vulnerabilities were grouped under separate CVEs). 345 of the vulnerabilities were caused by memory management issues, such as buffer overflows and accessing memory after it was freed. These issues could potentially lead to malicious code execution when opening specially crafted pages. Most of the issues were identified through code validation by AI models.
- A button has been added to the context menu displayed when right-clicking a link to quickly open the link's contents in Split View, which allows you to view the contents of two tabs side-by-side in a single window. After invoking Split View from a tab's context menu, you can now select a second tab by searching through open tabs. A "Reverse Tabs" button has also been added to the tab's context menu, allowing you to swap the tabs in the left and right Split View blocks.
- The about:translations service page has been introduced, providing a dedicated interface for translating text from one language to another. Translation occurs in real time as you type. To quickly navigate to this page, you can use the suggestion that appears when you start typing "translate" in the address bar.
- On the platform Linux The standard emoji selection interface provided by the GTK library is used. This interface is invoked by double-pressing Ctrl+" in text input forms.
- RPM packages for Red Hat Enterprise are now generated. Linux, Fedora, openSUSE and other distributions that use the RPM package manager.
- It is now possible to transfer information about several tabs at once via the clipboard: if you select several tabs in the panel and choose "Share → Copy X links" from the context menu, the titles and URLs of the selected tabs will be placed in the clipboard.
- The built-in PDF viewer now includes functions for reordering, copying, pasting, deleting, and exporting pages from a PDF document.
- The Local Network Access (LNA) specification is enabled for all users to restrict access to the local system (loopback, 127.0.0.0/8) or internal network (192.168.0.0/16, 10.0.0.0/8, etc.) when interacting with public websites. To access internal resources, the user must grant the web application special permissions, as such activity is used by attackers to carry out CSRF attacks on routers, access points, printers, corporate web interfaces, and other devices and services that accept requests only from the local network. Furthermore, scanning of internal resources can be used for indirect identification or to collect information about the local network. Previously, this protection was only available when Enhanced Tracking Protection (ETP) => Strict mode was enabled.
- In assemblies for Windows A new profile management system has been implemented, with the ability to save a profile to a file and support for using Firefox for standalone web applications.
- An option has been added to the settings (Settings > Tabs > Drag tabs) that allows you to disable the creation of tab groups when dragging the mouse from one tab to another for those who prefer to manage grouping only through the context menu.
- Integrated free VPNThe Firefox VPN service is now available to users in Canada, in addition to users in the US, France, Germany, and the UK. The service allows you to access websites indirectly, through intermediate proxies.servers VPNs in different countries hide the user's IP address. It is possible to enable the VPN only for selected websites. Activating the VPN requires registering a Mozilla account. The VPN service has a 50 gigabyte monthly data limit.
- In Web Developer Tools, a separate section has been added to the CSS panel for element-specific pseudo-classes, such as the ":open" pseudo-class, which is used for expandable elements like , and ":visited" - used for elements and .
The network activity monitoring panel now displays secure connections established using certificates issued by certification authorities that are not included in the Mozilla root certificate database.
- The ariaNotify API has been implemented, allowing web applications for people with visual impairments to display notifications via a screen reader.
- For the element Support for pseudo-classes (:playing,:paused, etc.) has been implemented to change the style depending on the playback state.
- Added the highlightsFromPoint() method, which returns, for a specified position on the page, an array of HighlightHitResult objects containing information about content highlighted using the CSS Custom Highlight API.
- CSS now supports applying the light-dark() function to images to adapt to light or dark mode settings. The function accepts two images that will be selected depending on whether the element is in light or dark mode. light-dark( url("light-icon.png"), url("dark-icon.png") );
- The CSS color-mix() function now supports mixing an arbitrary number of color values (previously, only two colors could be mixed). color-mix(in oklab, teal 20%, olive 30%, blue 50%)
- For images loaded as the page scrolls ("loading=lazy"), whose variants are defined via the "srcset" property, support for the "sizes=auto" attribute is now implemented. This value allows the browser to automatically select the appropriate image from the "srcset" set based on the width available for the "img" element.
- In the Firefox version for Android Work has been carried out to improve stability, smoothness and responsiveness during navigation.
Source: opennet.ru
