I-ProHoster > Блог > izindaba ze-inthanethi > Ukukhishwa kweFirefox 119

Ukukhishwa kweFirefox 119

Isiphequluli sewebhu seFirefox 119 sakhululwa futhi kwasungulwa isibuyekezo segatsha sosekelo sesikhathi eside - 115.4.0. Igatsha leFirefox 120 lidluliselwe esigabeni sokuhlola i-beta, ukukhululwa kwaso kuhlelelwe umhla zingama-21 kuNovemba.

Izindlela ezintsha eziqanjiwe kuFirefox 119:

  • Isixhumi esibonakalayo esibuyekeziwe sekhasi leFirefox View sethuliwe, okwenza kube lula ukufinyelela okuqukethwe okubukwe ngaphambilini. Ikhasi leFirefox View lihlanganisa ndawonye ulwazi mayelana namathebhu asebenzayo, amakhasi asanda kubukwa, amathebhu avaliwe, namathebhu avela kwamanye amadivaysi endaweni eyodwa. Inguqulo entsha ye-Firefox View inikeza ulwazi mayelana nawo wonke amathebhu avuliwe kunoma yiliphi iwindi, futhi yengeza ikhono lokubuka umlando wakho wokuphequlula ohlelwa ngedethi noma isayithi.
    Ukukhishwa kweFirefox 119
  • Ikhono lokungenisa izengezo ukusuka ku-Chrome neziphequluli ngokusekelwe kunjini ye-Chromium linikwe amandla. Engxoxweni yokungenisa idatha kwezinye iziphequluli (“Ngenisa Idatha” ekhasini elithi:okuncanyelwayo#ikhasi elijwayelekile), kuvele inketho yokudlulisa izengezo. Ukudlulisa kubandakanya uhlu lwezengezo ezingama-72, oluqhathanisa izihlonzi zezengezo ezifanayo ezikhona ze-Chrome neFirefox. Uma izengezo ezivela ohlwini zikhona uma kufakwa idatha ku-Chrome, iFirefox ifaka inguqulo yomdabu yeFirefox esikhundleni senguqulo ye-Chrome yesengezo.
    Ukukhishwa kweFirefox 119
  • Ukusekelwa kwendlela ye-ECH (Encrypted Client Hello) kufakiwe, eqhubeka nokuthuthukiswa kwe-ESNI (I-Encrypted Server Name Indication) futhi isetshenziselwa ukubethela ulwazi olumayelana nemingcele yeseshini ye-TLS, njengegama lesizinda eliceliwe. Umehluko oyinhloko phakathi kwe-ECH ne-ESNI ukuthi esikhundleni sokubethela ezingeni lezinkambu ngazinye, i-ECH ibethela wonke umlayezo we-TLS ClientHello, okuvumela ukuthi uvimbele ukuvuza ngezinkambu i-ESNI engazifaki, isibonelo, i-PSK (Kwabiwe Ngaphambili Key) inkambu.
  • Amandla okuhlela amadokhumenti esibukeli se-PDF esakhelwe ngaphakathi manje ahlanganisa ukusekela kokufaka izithombe nezichasiselo zombhalo, ngaphezu komdwebo womugqa wamahhala owawutholakala ngaphambilini kanye nokunamathisela amazwana ombhalo. Imodi entsha yokuhlela ye-PDF yenzelwe abasebenzisi abathile kuphela; ukuze uyiphoqelele ku-:config page, kufanele wenze kusebenze isilungiselelo esithi “pdfjs.enableStampEditor”.
    Ukukhishwa kweFirefox 119
  • Izilungiselelo ezishintshiwe ezihlobene nokubuyisela iseshini ephazanyiswe ngemva kokuphuma esipheqululini. Ngokungafani nokukhishwa kwangaphambilini, ulwazi mayelana namathebhu asebenzayo kuphela, kodwa namathebhu avaliwe asanda kuvalwa manje azogcinwa phakathi kwamaseshini, okukuvumela ukuthi ubuyisele amathebhu avaliwe ngephutha ngemva kokuqala kabusha futhi ubuke uhlu lwawo ku-Firefox View. Ngokuzenzakalelayo, amathebhu wokugcina angu-25 avulwe ezinsukwini ezingu-7 ezedlule azolondolozwa. Idatha emayelana namathebhu kumawindi avaliwe nayo izocatshangelwa futhi uhlu lwamathebhu avaliwe luzocutshungulwa kumongo wawo wonke amawindi ngesikhathi esisodwa, hhayi nje iwindi lamanje.
  • Amandla emodi Yokuvikelwa Kwekhukhi Ephelele anwetshiwe, lapho kusetshenziswa indawo yokulondoloza ehlukile ye-Cookie endaweni ngayinye, engavumeli ukusetshenziswa kwamakhukhi ukulandelela ukunyakaza phakathi kwamasayithi (wonke amakhukhi asethwe kumabhulokhi ezinkampani zangaphandle alayishwe isayithi (iframe, js, njll.) .p.), zixhunywe kusayithi lapho la mabhulokhi alandwe khona). Inguqulo entsha isebenzisa ukuhlukaniswa kohlelo lwe-URI “blob:...” (I-Blob URL), engase isetshenziselwe ukudlulisa ulwazi olufanele ukulandelelwa komsebenzisi.
  • Kubasebenzisi bendlela yokuvikela yokulandela ngomkhondo ethuthukisiwe (i-ETP, Ukuvikelwa Kokulandelela Okuthuthukisiwe), ukuvikelwa okwengeziwe kunikwe amandla ekukhombeni okungaqondile kwabasebenzisi ngokuhlaziywa kwefonti - amafonti abonakala kumasayithi akhawulelwe kumafonti esistimu namafonti asuka kumasethi olimi ajwayelekile.
  • Iphakethe le-Firefox snap linikeza ukwesekwa kokusebenzisa ibhokisi lokukhetha ifayela le-Ubuntu lomdabu lapho ufinyelela idatha evela kwezinye iziphequluli, kanye nokusekelwa kokunquma izici ezitholakalayo ngokusekelwe enguqulweni efakiwe ye-xdg-desktop-portal.
  • Usekelo olungeziwe lokukhetha imonitha ukubeka iwindi lesiphequluli elisebenza kumodi yekhiyoski ye-inthanethi. Imonitha ikhethwa kusetshenziswa inketho yomugqa womyalo “-kiosk-monitor”. Isiphequluli sishintshela kumodi yesikrini esigcwele ngokushesha ngemva kokwethulwa kumodi yekhiyoski.
  • Imise ukuthola okuqukethwe kwemidiya kumafayela acutshungulwe ngohlobo lwe-MIME ye-"application/octet-stream". Kumafayela anjalo, isiphequluli manje sizokutshela ukuthi ulande ifayela kunokuthi uqale ukulidlala.
  • Ukulungiselela ukufakwa kwe-Firefox kokuvinjwa kwe-Cookie yenkampani yangaphandle, ukuqaliswa kwe-API Yokufinyelela Isitoreji kubuyekeziwe ukuze kunikezwe umsebenzisi imvume yokufinyelela isitoreji se-Cookie ku-iframe lapho Amakhukhi enkampani yangaphandle evinjwa ngokuzenzakalela. Ukusetshenziswa okusha kuthuthukise ukuvikeleka futhi kwengeza izinguquko ukuze kugwenywe izinkinga ngamasayithi.
  • Ezicini zangokwezifiso (I-Custom Element), enweba ukusebenza kwezinto ezikhona ze-HTML, usekelo lwezichasiso ze-ARIA (Izicelo Ze-inthanethi Ezicebile Ezifinyelelekayo) lufakiwe, okwenza lezi zinto zifinyeleleke kalula kubantu abakhubazekile. Kwengezwe ikhono lokusetha nokufunda izibaluli ze-ARIA ngokuqondile kuzinto ze-DOM (ngokwesibonelo, buttonElement.ariaPressed = "true") ngaphandle kokubiza i-setAttribute nezindlela ze-getAttribute.
  • Inhlokweni ye-Cross-Origin-Embedder-Policy HTTP, elawula imodi yokuhlukanisa ye-Cross-Origin futhi ikuvumela ukuthi uchaze imithetho yokusetshenziswa evikelekile ekhasini lemisebenzi enelungelo, yengeze ukusekelwa kwepharamitha "yokungenasici" ukukhubaza ukudluliswa kwemininingwane ehlobene. ulwazi olufana namakhukhi kanye nezitifiketi zeklayenti.
  • Umsebenzi we-attr() CSS manje unamandla okucacisa impikiswano yesibili, inani layo elizosetshenziswa ezimeni lapho isibaluli esishiwo sishoda khona noma sinenani elingavumelekile. Isibonelo, i-attr(foobar, "Inani elizenzakalelayo").
  • I-Add Object.groupBy kanye ne-Map.groupNgezindlela zokuhlanganisa izakhi zamalungu afanayo kusetshenziswa inani leyunithi yezinhlamvu elibuyiswe umsebenzi wokuphinda ushayele, obizwa nge-elementi ngayinye yamalungu afanayo, njengokhiye wokuqoqa.
  • Izindlela ezingeziwe: I-String.prototype.isWellFormed() ukuhlola ukuba khona kombhalo we-Unicode owakheke kahle ochungechungeni (“amapheya okutholwa” aphelele kuphela ezinhlamvu ezihlanganisiwe ayahlolwa) kanye ne-String.prototype.toWellFormed() yokuhlanza nokuguqula umbhalo we-Unicode ngendlela efanele .
  • Izindlela ze-WebTransport.createBidirectionalStream() kanye ne-WebTransport.createUnidirectionalStream() zengeze ukusekela kwendawo ethi "sendOrder" ukuze kusethwe ukubaluleka okuhlobene kokusakazwayo okuthunyelwayo.
  • I-AuthenticatorAttestationResponse API inikeza izindlela ezintsha getPublicKey(), getPublicKeyAlgorithm() kanye ne-getAuthenticatorData().
  • I-Web Authentication API yengeze usekelo lwezakhiwo ze-credProps, ezikuvumela ukuthi unqume ubukhona bemininingwane ngemva kokudalwa noma ukubhaliswa.
  • Kungezwe izindlela ze-parseCreationOptionsFromJSON(), parseRequestOptionsFromJSON() kanye ne-toJSON() ku-PublicKeyCredential API ukuze kuguqulwe izinto zibe ukumelwa kwe-JSON okulungele ukwenziwa kwe-serialization/ukukhishwa kwe-deserialization nokudluliselwa kuseva.
  • Kumathuluzi onjiniyela bewebhu, isixhumi esibonakalayo somsebenzi wokusebenzisana ne-CSS (izitayela ze-CSS Ezingasebenzi) sithuthukisiwe, okuhlanganisa ikhono lokuhlonza izici ze-CSS ezingaphazamisi isici, futhi kwengeza nosekelo olugcwele lwezakhi-mbumbulu, njenge "::uhlamvu lokuqala", "::cue" kanye "::isibambindawo".
  • Isibukeli sedatha ye-JSON esakhelwe ngaphakathi sishintshela ngokuzenzakalelayo ekubukeni idatha eluhlaza uma idatha ye-JSON ebukwayo ingalungile noma ilimele.
  • Kuplathifomu yeWindows, kungezwe usekelo lwesilungiselelo sesistimu esifihla ikhesa ngenkathi uthayipha.
  • Enguqulweni yenkundla ye-Android, ukuphahlazeka okwenzeka lapho ubuka ividiyo esikrinini esigcwele kususiwe. Ukwesekwa okungeziwe kokuncamelayo-ukugqama kanye nemibuzo yemidiya ekhethwayo-encishisiwe ebonisa ngale endaweni ye-Android 14.

Ngokungeziwe ezenzweni ezintsha nokulungiswa kweziphazamisi, iFirefox 119 ilungise ubungozi obungu-25. Ubungozi obuyi-17 (16 kuhlanganiswe ngaphansi kwe-CVE-2023-5730 ne-CVE-2023-5731) emakwe njengokuyingozi kubangelwa izinkinga zenkumbulo, njengokuchichima kwebhafa kanye nokufinyelela ezindaweni zenkumbulo esezikhululiwe kakade. Ngokunokwenzeka, lezi zinkinga zingaholela ekusetshenzisweni kwekhodi yomhlaseli lapho kuvulwa amakhasi aklanywe ngokukhethekile. Okunye ukuba sengozini okuyingozi (CVE-2023-5721) kuvumela ukuchofoza ukuze uqinisekise noma ukhansele ezinye izingxoxo zesiphequluli noma izexwayiso.

Source: opennet.ru

Engeza amazwana