Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Browsers
Firefox
Firefox 95 enhances the browser's protection against malicious code
Message
<blockquote data-quote="HarborFront" data-source="post: 967340" data-attributes="member: 55987"><p>Mozilla is introducing a new security feature it claims will make Firefox the most secure browser available to consumers. Dubbed <a href="https://hacks.mozilla.org/2021/12/webassembly-and-back-again-fine-grained-sandboxing-in-firefox-95/" target="_blank">RLBox</a> and available through today's Firefox 95 update, it’s a new sandboxing tool the company developed in collaboration with the University of California San Diego and the University of Texas.</p><p></p><p>All modern browsers use sandboxing to protect users against malicious code. The problem is that many of the most advanced exploits chain together two vulnerabilities to bypass those protections. With RLBox, Firefox will compile a process into <a href="https://www.engadget.com/2017-03-07-mozilla-video-games-browser.html" target="_blank">WebAssembly</a> and then convert it into native code. According to Mozilla, this approach presents two significant advantages. It prevents code from jumping between different parts of a program and limits access to specific areas of your system’s memory.</p><p></p><p>With today’s release, Mozilla will use RLBox to isolate five components of Firefox, including the browser’s Graphite font rendering engine and Ogg multimedia module. If the system works as expected, the company says “even a zero-day vulnerability in any of [the five components] should pose no threat to Firefox.”</p><p></p><p>Mozilla is quick to note it won’t be able to use RLBox to protect every component of Firefox. For instance, it’s not suitable for modules that depend on sharing memory with the rest of the program to function. However, the company is hopeful that other developers will use the technology to make their software safer. In the meantime, RLBox is now rolling out to all desktop and mobile versions of Firefox.</p><p></p><p>[URL unfurl="true"]https://www.engadget.com/mozilla-firefox-95-rlbox-190712215.html[/URL]</p><p></p><p>More about RLBox here</p><p></p><p>[URL unfurl="true"]https://www.phoronix.com/scan.php?page=news_item&px=Firefox-95.0-Available[/URL]</p><p></p><p>[URL unfurl="true"]https://thehackernews.com/2021/12/latest-firefox-95-includes-rlbox.html[/URL]</p></blockquote><p></p>
[QUOTE="HarborFront, post: 967340, member: 55987"] Mozilla is introducing a new security feature it claims will make Firefox the most secure browser available to consumers. Dubbed [URL='https://hacks.mozilla.org/2021/12/webassembly-and-back-again-fine-grained-sandboxing-in-firefox-95/']RLBox[/URL] and available through today's Firefox 95 update, it’s a new sandboxing tool the company developed in collaboration with the University of California San Diego and the University of Texas. All modern browsers use sandboxing to protect users against malicious code. The problem is that many of the most advanced exploits chain together two vulnerabilities to bypass those protections. With RLBox, Firefox will compile a process into [URL='https://www.engadget.com/2017-03-07-mozilla-video-games-browser.html']WebAssembly[/URL] and then convert it into native code. According to Mozilla, this approach presents two significant advantages. It prevents code from jumping between different parts of a program and limits access to specific areas of your system’s memory. With today’s release, Mozilla will use RLBox to isolate five components of Firefox, including the browser’s Graphite font rendering engine and Ogg multimedia module. If the system works as expected, the company says “even a zero-day vulnerability in any of [the five components] should pose no threat to Firefox.” Mozilla is quick to note it won’t be able to use RLBox to protect every component of Firefox. For instance, it’s not suitable for modules that depend on sharing memory with the rest of the program to function. However, the company is hopeful that other developers will use the technology to make their software safer. In the meantime, RLBox is now rolling out to all desktop and mobile versions of Firefox. [URL unfurl="true"]https://www.engadget.com/mozilla-firefox-95-rlbox-190712215.html[/URL] More about RLBox here [URL unfurl="true"]https://www.phoronix.com/scan.php?page=news_item&px=Firefox-95.0-Available[/URL] [URL unfurl="true"]https://thehackernews.com/2021/12/latest-firefox-95-includes-rlbox.html[/URL] [/QUOTE]
Insert quotes…
Verification
Post reply
Top