Pale Moon is a custom-built and speed optimized Firefox browser. The project uses contributed Open Source code to create a full-featured, speed optimized browser based on Firefox browser.
Having seen the advantages on other systems (e.g. Linux) with regards to programs being compiled specifically for the capabilities of the machine it is installed on, it became obviously clear that Windows users were at a disadvantage.
Mozilla only releases windows executables with maximum compatibility in mind, meaning that Firefox is made to run on as many different systems as possible, sacrificing efficiency and speed in the process to be compatible with, by current standards, absolutely ancient hardware.
Mozilla does not provide optimized browser packages for Windows. That means you may be lose speed and efficiency when you use your browser.
That needs to change. Therefore Pale Moon project offers custom-built and optimized Firefox browsers for Windows Operating Systems. Make sure to get the most speed and efficiency out of your browser!
Pale Moon Main features:
- Highly optimized for modern processors
- 100% Firefox sourced: As safe as the browser that has seen years of development.
- Support for Firefox extensions (add-ons), themes and personas
- Able to use existing Firefox profiles, bookmarks and settings with this migration tool
- Uses slightly less memory because of disabled redundant and optional code
- Significant speed increases for page drawing and script processing
- Support for HTML5 and WebGL (v4)
- Stability: experience fewer browser crashes.
- Support for SVG and Canvas, and downloadable fonts including WOFF
- Support for OOPP (Out-of-process plugin execution)
Users will find a slightly more conservative approach to changes in the user interface in the Pale Moon browser. It, although very close to Firefox, is (now more obviously so than before) a different product. However, these differences in layout do not prevent anyone from configuring their browser interface to exactly the way they want it to look and work. Including like Mozilla Firefox’s default layout if they so wish.
- Fixed a sampling issue in libsoundtouch (DiD)
- Fixed an issue with a new upcoming Windows 10 feature not honoring Private Browsing mode by default (DiD)
- Fixed several stability and memory safety hazards. (DiD)
- Fixed an issue where files could inadvertently be executed with the designated file type handler instead of opened. (CVE-2019-17019)
- Unified XUL Platform Mozilla Security Patch Summary: 2 fixed, 7 DiD, 12 not applicable.
Changes in Pale Moon 28.8.0 (2019-12-10):
- Added support for modern Solaris operating systems like Illumos (thanks Athenian200!).
position:stickyfor table parts – You can now use CSS to e.g. stick table headers so they don’t scroll off the screen!
- Enabled basic implementation of module type scripting. While not fully spec compliant (yet), this will fix the few web compatibility issues with sites that rely on this feature without fallback (e.g. the Chromium bugtracker).
- Implemented Promise.
- Implemented Regular Expression lookbehind (ES2018).
- Implemented Regular Expression /s flag (dotAll support) (ES2018).
- Added Ekoru to the list of default search engines. This is a Bing-backed search engine that donates the majority of its revenue to various charities that support the planet and animals. An environment-supporting alternative to Ecosia if you don’t want to support Google in the process.
- Changed the way tables are rendered to fix a number of spec compliance issues and allow relative positioning of table parts.
- Now building against the Windows 10 SDK 10.0.17763.132 for increased compatibility with Windows 10 and improved Spectre mitigation.
- Removed the unused DiskSpaceWatcher component.
- Updated cairo code.
- Updated SQLite to 3.30.1.
- Updated the Brotli library to 1.0.7.
- Updated the woff2 library to 1.0.2.
- Updated the OpenType Sanitizer to 8.0.0.
- Updated the embedded Emoji font to Mozilla’s COLR-mapped twemoji 0.5.0 (Twemoji 12.1.3), to support Emoji 12.
- Improved CSS grid rendering.
- Changed packaging for archives to use 7z/xz instead of zip/bz2.
- Made the second argument of (DOM/CSS)
insertRule()optional for (Chrome) web compatibility.
- Removed the non-standard
object.prototype.watch()/unwatch()functions. Please note that this may affect some extensions; those will need to be updated to no longer use these non-standard functions.
- Fixed the status bar module to work around an issue with relying on
- Fixed a build failure in the libcubeb sndio module.
- Fixed a small oversight in the release branch that would potentially still mark jnlp files as executable.
- Fixed the certificate retrieval logic in the certificate exception dialog.
- Fixed an issue with add-ons potentially getting confused during add-on updates due to cached scripts.
- Fixed a crash due to unnecessary reparenting calls in layout.
- Reinstated the mentioning of the number of accelerated/total windows in Troubleshooting Information, for completeness.
- Moved the embedded font for Emoji from application to platform so all UXP applications can easily benefit from it (thanks Tobin!).
- Cleaned up the jemalloc code: Removed dead/unused code, removed conditionals around “always on” code, and made the allocator VLA-free.
- Fixed an oversight in the release branch still marking “jnlp” (Java Web Start) as executable.
- Removed the silent fallback to insecure install locations on Windows.
Pale Moon will no longer by default install into unprotected program locations (this was a regression in v28). If your operating system account does not have the necessary privileges, you need to manually select an accessible folder to install into. This is important to prevent malware from modifying installed programs in well-known but otherwise unprotected installation locations.
- Added a preference for, and disabled, the confirmation prompt for URL authentication (prevents evil traps).
- Disabled the use of HPKP by default due to the inherent risks involved with this feature. A preference was added to completely disable header processing, and using preloaded pins is effectively disabled. Please note that this is automatically disabled by default for everyone, regardless of your previous setting for this feature, and it is strongly recommended you keep this feature disabled. HPKP will eventually be removed (overall Internet concensus).
- Fixed a potential issue when interacting with plugins. (DiD)
- Fixed a potential crash scenario when reading PAC configuration. (DiD)
- Fixed a potential issue with text selection painting. (DiD)
- Fixed an issue with element references not being properly updated. (DiD)
- Fixed an issue with incorrect saving of web pages as text. (DiD)
- Fixed a potential issue with clipboard handling. (DiD)
- Fixed a potential issue with attaching the debugger to web workers. (DiD)
- Updated NSS to 3.41.4 to address CVE-2019-11756 and CVE-2019-11745.
- Unified XUL Platform Mozilla Security Patch Summary: 2 fixed, 8 DiD, 16 not applicable.
Changes in Pale Moon 28.7.2 (2019-10-29):
- Disabled the use of ICC color profiles for images on Linux by default.
- Updated timezone data for internationalization functions.
- Fixed the option to use hardware acceleration over RDP for Windows 8.1 and 10.
- Fixed an issue with inner window navigation potentially leaking.
- Fixed a startup crash caused by Qihoo 360 Safeguard/360 Total Security.
- Ported some expat parser fixes from upstream.
- Ported several NSS upstream fixes to our build.
- Aligned handling of U+0000 in the html5 parser with expectations.
- Added size checks to WebGL data buffering.
- Fixed build issues with newer glibc versions.
- Fixed build issues for ARM targets.
- Worked around a gcc9 compiler issue that would prevent building with it.
- Sec bug fixes: CVE-2019-15903, CVE-2019-11757, CVE-2019-11763 and several potentially exploitable crashes and memory safety hazards that don’t have a CVE number.
- Unified XUL Platform Mozilla Security Patch Summary: 6 fixed, 6 DiD, 1 rejected, 24 not applicable.
Changes in Pale Moon 28.7.1 (2019-09-12):
- Fixed an issue where saving a webpage to disk would sometimes drop tags from the document.
- Fixed an issue with click-to-play plugin content throwing up a blank notification.
- Fixed an issue in the renderer where region intersections would sometimes return the wrong result.
This fixes a regression caused by the fix for CVE-2016-5252.
- Fixed security issues: CVE-2019-11744, CVE-2019-11752, CVE-2019-11737, CVE-2019-11746, CVE-2019-11750, CVE-2019-11747 and CVE-2019-11738.
- Unified XUL Platform Mozilla Security Patch Summary: 7 fixed, 1 DiD, 1 already covered, 22 not applicable.
Homepage – http://www.palemoon.org
Minimum System Requirements:
- Windows 7, 8, 8.1, 10, Server 2008 R2 or later
- A processor with SSE2 instruction support
- 1 GB of RAM
- At least 200 MB of free (uncompressed) disk space
Size: 33.4 MB