New Update Mullvad Browser - Updates Thread

Mullvad Browser 13.0.15​

All Platforms​

  • Rebase Mullvad Browser stable onto 115.11.0esr [mullvad-browser]
  • IndexDB's private directory not removed on browser shutdown in global private browsing mode [tor-browser]
  • Use the HomePage module for new identity checks [tor-browser]

Build System​

All Platforms​

  • Add release date to rbm.conf [tor-browser-build]

macOS​

  • app change to ja doesn't apply ja translations to most (all?) chrome [tor-browser]

Download Mullvad Browser for Windows | macOS | Linux
 

Mullvad Browser 13.0.16​

All Platforms​

  • Updated Firefox to 115.12.0esr
  • Updated uBlock Origin to 1.58.0
  • Rebase Mullvad Browser Stable 13.0 onto 115.12.0esr [mullvad-browser]
  • Backport security fixes from Firefox 127 [tor-browser]

Download Mullvad Browser for Windows | macOS | Linux
 

Mullvad Browser 13.5​

Changelog​


All Platforms​

  • Hide "List all tabs" when the tabs don't overflow [mullvad-browser]
  • Make User-Agent request header match RFP's navigator.userAgent [mullvad-browser]
  • Move network.proxy.failover_direct=false pref to base-browser [mullvad-browser]
  • Update nightly mar signing key [mullvad-browser]
  • Mouse-over long links causes the browser element to re-center relative to width of status tooltip [mullvad-browser]
  • Should we reflect the actual channel in about:debugging? [mullvad-browser]
  • The Letterboxing>Content Alignment heading doesn't follow the Firefox design document capitalization [mullvad-browser]
  • Add default bookmarks in the alpha channels for testing [mullvad-browser]
  • Consider dropping protection against line-height introduced in #23104 [tor-browser]
  • compat: beacon: re-enable the API but transform it to a no-op [tor-browser]
  • Letterboxing preferences UI [tor-browser]
  • Make the appearance of letterboxing look more intentional [tor-browser]
  • Add option to reuse last window size when letterboxing is enabled [tor-browser]
  • intl.accept_languages gets into a stuck modifed state [tor-browser]
  • Drop dom.enable_resource_timing = false preference [tor-browser]
  • browser.startup.homepage and TOR_DEFAULT_HOMEPAGE are ignored for the new window opened by New Identity [tor-browser]
  • Correctly round new windows when bookmarks toolbar is set to "Only Show on New Tab" [tor-browser]
  • Fluent migration: new identity [tor-browser]
  • Fluent migration: security level [tor-browser]
  • compat: why is eventCounts undefined? [tor-browser]
  • Visual noise in 13.5a4 letterboxing [tor-browser]
  • Betterboxing: gradient is never shown [tor-browser]
  • Betterboxing: make the decorator border disappear when the corners are flat [tor-browser]
  • Change RFP-spoofed Timezone from UTC to a real-world, less discriminable one [tor-browser]
  • Include Alpha and Nightly in MOZ_APP_DISPLAYNAME (and possibly in other places) [tor-browser]
  • Fix betterboxing + findbar horizontal bounce if the scrollbar is not an overlay [tor-browser]
  • Shrink the window to match letterboxing size when the emtpy area is doble-clicked [tor-browser]
  • Install svg from branding theme to browser/chrome/icons/default [tor-browser]
  • When startup window is maximized per letterboxing.rememberSize on startup, the restore button shrinks it to its minimum size [tor-browser]
  • Update the profile directory patch to check both for system-install and for is-packaged-app file [tor-browser]
  • Correctly record new initial window size after auto-shrinking [tor-browser]
  • Try not to spoof system-ui in contexts exempt from RFP [tor-browser]
  • Move base-browser.ftl Fluent file from "browser" to "toolkit" [tor-browser]
  • Exempt pdf.js from letterboxing [tor-browser]
  • Modify moz-support-link [tor-browser]

Windows + macOS​

  • Win ≤8.1 and macOS ≤10.14 not supported in ESR 128 [tor-browser]
  • Add a banner warning users about the upcoming EOL for Win ≤8.1 and macOS ≤10.14 [tor-browser]
  • Add support link to OS deprecation message [tor-browser]

Windows​

  • Create asset(s) for the Mullvad Browser installer [mullvad-browser]
  • Disable setting default browser on Windows [mullvad-browser]
  • windows: FontSubstitutes can leak system locale [tor-browser]
  • Add filetype association to the installer of Mullvad Browser [tor-browser-build]

macOS​

  • Create build-specific installer for macOS [tor-browser-build]

Linux​

  • Include *.deb in the list of files to gpg sign [tor-browser-build]
  • deb installation package for Linux [mullvad-browser]
  • rpm installation package for Linux [mullvad-browser]
  • Filepicker string chars are tofu for the .deb package in Ubuntu 22.04 / Debian 11 [mullvad-browser]
  • Adapt the data import wizard to use the original $HOME on Linux [tor-browser]
  • 13.5a7's start-tor-browser seems to break KeePassXC-Browser? [tor-browser-build]

Build System​

All Platforms​

  • Move --disable-eme to OS- and architecture-specific mozconfigs [mullvad-browser]
  • Deb package in the debian software installer is showing the License as "Proprietary" [mullvad-browser]
  • Enable GeckoDriver for all desktop platforms [tor-browser]
  • Update mach to work with python 3.12 [tor-browser]
  • Bump the various branches to 13.5 on main [tor-browser-build]
  • Create Release Prep MR generating script [tor-browser-build]
  • Add command to unsign .mar files and compare with sha256sums-unsigned-build.txt [tor-browser-build]
  • Add RPM dependencies to README [tor-browser-build]
  • Sign mullvad-browser nightly updates [tor-browser-build]
  • Dump more information about build times on Firefox [tor-browser-build]
  • make fetch is not fetching mullvad repo [tor-browser-build]
  • Set correct updater_url for Mullvad Browser nightly builds [tor-browser-build]
  • Update detailsURL in tools/signing/nightly/update-responses-base-config.yml [tor-browser-build]
  • Remove use of projects/browser/run_scripts [tor-browser-build]
  • Update projects/browser/Bundle-Data/Docs/Licenses/NoScript.txt [tor-browser-build]
  • Update README for Ubuntu 24.04 unprivileged user namespace changes [tor-browser-build]
  • Update keyring/boklm.gpg for new subkeys [tor-browser-build]
  • Explicitly fetch tags in the release preparation script [tor-browser-build]
  • Script to automate uploading sha256s and signatures to location signing/download-unsigned-sha256sums-gpg-signatures-from-people-tpo expects them to be [tor-browser-build]
  • Add an option to create zip files using 7z [rbm]
  • Move capture_exec to a separate module [rbm]
  • We should remove ./ when using 7-zip for zip files [rbm]
  • Correctly refresh file when computing input_files_id and a file is set as refresh_input [rbm]

Windows​

  • Build system installer for Mullvad Browser on Windows [mullvad-browser]
  • Use Clang to compile NSIS [tor-browser-build]
  • Update NSIS to 3.09 [tor-browser-build]
  • Do a cleanup of the NSIS script [tor-browser-build]
  • Include the ShellLink plugin in NSIS [tor-browser-build]
  • Draft the new installer for Mullvad Browser [tor-browser-build]
  • $app_bundle is missing the final .app in projects/firefox/build [tor-browser-build]
  • authenticode-timestamping.sh fails to run again because tmp-timestamp already exists [tor-browser-build]
  • Explicitly initialize the plugin directory on the Windows installer [tor-browser-build]
  • Stop generating an MB "portable" windows install [tor-browser-build]

macOS​

  • Remove old macos signing scripts [tor-browser-build]
  • Since TB/MB 13.5a5 macos signed installers contain all .DS_Store [tor-browser-build]

Linux​

  • Add mozconfig-linux-aarch64 [tor-browser]
  • Use the final path for Linux debug symbols [tor-browser-build]
  • Make deb package for Mullvad Browser [tor-browser-build]
  • Fix indentation of projects/browser/RelativeLink/start-browser [tor-browser-build]
  • Make rpm package for Mullvad Browser [tor-browser-build]

Download Mullvad Browser for Windows | macOS | Linux
 

Mullvad Browser 13.5.1​

All Platforms​

  • Updated Firefox to 115.13.0esr
  • Bug 317: Rebase Mullvad Browser stable onto 115.13.0esr [mullvad-browser]
  • Bug 42693: Backports security fixes from Firefox 128 [tor-browser]

Linux​

  • Bug 314: Mullvad Browser is not listed as a possible default browser application for Gnome on Ubuntu / Fedora [mullvad-browser]

Build System​

All Platforms​

  • Bug 41166: Use the GitHub repository for firefox-l10n [tor-browser-build]
  • Bug 41173: Fix permission issue on files in the debian directory [tor-browser-build]

Windows​

  • Bug 41177: Include Windows installer without -portable- in download json files [tor-browser-build]

Download Mullvad Browser for Windows | macOS | Linux
 

Mullvad Browser 13.5.2​

All Platforms​

  • Updated Firefox to 115.14.0esr
  • Updated NoScript to 11.4.31
  • Updated uBlock Origin to 1.59.
  • Bug 325: Rebase Mullvad Browser Stable onto 115.14.0esr [mullvad-browser]

Download Mullvad Browser for Windows | macOS | Linux
 

Mullvad Browser 13.5.3​

All Platforms​

  • Updated Firefox to 115.15.0esr
  • Updated NoScript to 11.4.35
  • Bug 332: Rebase Mullvad Browser Stable onto 115.15.0esr [mullvad-browser]
  • Bug 40056: Ensure that the lazy loading attribute is ignored on script-disabled documents [tor-browser]
  • Bug 42686: Backport Mozilla 1885101 [tor-browser]
  • Bug 42829: Prevent CSS-based scriptless interaction tracking [tor-browser]
  • Bug 43100: Backport security fixes from Firefox 130 [tor-browser]

Linux​

  • Bug 43064: Make copy/paste and drag/drop file filtering more specific [tor-browser]

Build System​

All Platforms​

  • Bug 41218: Use new Tor Browser gpg subkey for signing stable releases [tor-browser-build]
  • Bug 41222: link_old_mar_filenames still referenced in torbrowser-incrementals-{release,alpha}-unsigned [tor-browser-build]

Download Mullvad Browser for Windows | macOS | Linux
 

Mullvad Browser 13.5.6​

Note Mullvad Browser 13.5.4 and 13.5.5 were skipped because they were Tor Browser only numbered releases.

All Platforms​

  • Updated Firefox to 115.16.0esr
  • Updated NoScript to 11.4.40
  • Bug 356: Rebase Mullvad Browser Release onto Firefox 115.16.0esr [mullvad-browser]
  • Bug 42832: Download spam prevention should not affect browser extensions [tor-browser]
  • Bug 43173: Backport security fixes from Firefox 131 [tor-browser]

Linux​

  • Bug 334: When set as default browser on Linux in standard mode, links don't open correctly [mullvad-browser]

Build System​

macOS​

  • Bug 41231: Use var/browser_release_date in tools/signing/gatekeeper-bundling.sh [tor-browser-build]

Download Mullvad Browser for Windows | macOS | Linux
 

Mullvad Browser 13.5.7​

All Platforms​

  • Updated uBlock Origin to 1.60.0
  • Bug 361: SSL_ERROR_NO_CYPHER_OVERLAP on some Brazilian government websites [mullvad-browser]
  • Bug 43201: Security fixes from Firefox 131.0.2 [tor-browser]

Download Mullvad Browser for Windows | macOS | Linux
 

Mullvad Browser 13.5.9​

All Platforms​

  • Updated Firefox to 115.17.0esr
  • Updated NoScript to 11.4.42
  • Bug 43174: Issue with custom home page on local filesystem [tor-browser]
  • Bug 43207: Backport Mozbug 1886222 [tor-browser]
  • Bug 43240: Backport security fixes from Firefox 132 [tor-browser]
  • Bug 41273: relprep.py: bump Firefox and GV to a (yet) non-existing tag when the last one does not match HEAD [tor-browser-build]

Download Mullvad Browser for Windows | macOS | Linux
 

Mullvad Browser 14.0​

All Platforms​

  • Updated Firefox to 128.4.0esr
  • Updated NoScript to 11.5.2
  • Updated Mullvad Browser Extension to 0.9.3
  • Bug 328: Provide search engine icons [mullvad-browser]
  • Bug 329: Remove the Security Levels icon from the toolbar [mullvad-browser]
  • Bug 344: set media.navigator.enabled = true [mullvad-browser]
  • Bug 349: Tidy up mullvad Fluent files [mullvad-browser]
  • Bug 30543: compat: make spoofed orientation reflect spoofed screen dimensions [1607032 + 1918202] [tor-browser]
  • Bug 30862: 10ms time precision via EXSLT date-time function [tor-browser]
  • Bug 32668: NoScript default whitelist re-appears on clicking NoScript Options / Reset [tor-browser]
  • Bug 40147: Re-enable Picture-in-Picture mode [tor-browser]
  • Bug 41309: Re-enable screenshots component [tor-browser]
  • Bug 41817: Add more color aliases that take dark mode into account [tor-browser]
  • Bug 42070: Backport Bugzilla 1834307 and hide smooth-scroll UX [tor-browser]
  • Bug 42255: pdfjs.disabled used to be part of RFP until Bug 1838415; lock pref to false in stable [tor-browser]
  • Bug 42356: Review 000-tor-browser.js and 001-base-profile.js for 128 [tor-browser]
  • Bug 42362: "New window" missing from File menu [tor-browser]
  • Bug 42596: Several console errors: Console.maxLogLevelPref used with a non-existing pref: [tor-browser]
  • Bug 42601: Check Bug 1894779: Allow font-face urls to be resource:// urls and relax CORS for resource:// URLs [tor-browser]
  • Bug 42603: Remove safebrowsing URLs [tor-browser]
  • Bug 42611: Set clipboard.imageAsFile.enabled to false [tor-browser]
  • Bug 42617: Restore the HTML form on DDG when using safest in 128 [tor-browser]
  • Bug 42630: Review LaterRun in 128 [tor-browser]
  • Bug 42640: Disable Firefox Flame button due to unknown interactions with New Identity [tor-browser]
  • Bug 42641: Move from panel-footer class to moz-button-group [tor-browser]
  • Bug 42644: toolbar rules in panelUI-shared.css are unneccessary [tor-browser]
  • Bug 42646: Remove migrations for security.certerrors.mitm.auto_enable_enterprise_roots [tor-browser]
  • Bug 42647: "Switching to a new device" regressed on 128 [tor-browser]
  • Bug 42653: The Neterror page has a checkbox to report iframe origin errors to TPO [tor-browser]
  • Bug 42665: Drop "Learn More" spacing [tor-browser]
  • Bug 42667: Add description-deemphasized class to our additions to about:preferences [tor-browser]
  • Bug 42679: Use a more robust approach to hide the "tracking protection" urlbar button [tor-browser]
  • Bug 42683: Create script to generate issue triage csv's from bugzilla query and git scraping [tor-browser]
  • Bug 42684: Disable network prefetch [tor-browser]
  • Bug 42685: compat: ESR128: enable textmetrics [tor-browser]
  • Bug 42687: Disable Privacy-Preserving Attribution [tor-browser]
  • Bug 42699: Drop level="top" attribute from panels [tor-browser]
  • Bug 42704: Drop the badged="true" attribute from security level button [tor-browser]
  • Bug 42705: Update our preferences to account for new line height [tor-browser]
  • Bug 42718: Remove the firefox-view button from UI, even when always-on private-browsing mode is disabled [tor-browser]
  • Bug 42730: Make RemoteSettings use only local dumps [tor-browser]
  • Bug 42735: Disable recent search suggestions [tor-browser]
  • Bug 42740: Stop trying to hide "Restore previous session" [tor-browser]
  • Bug 42742: Inconsistent use of "New private window" vs "New window" [tor-browser]
  • Bug 42745: Remove some residuals from update scripts [tor-browser]
  • Bug 42764: Unconditionally disable find-bar transition animation [tor-browser]
  • Bug 42777: Remove 'Website Privacy Preferences' and ensure sensible default prefs [tor-browser]
  • Bug 42814: Opt out from Firefox relay by default. [tor-browser]
  • Bug 42831: Remove the shopping components [tor-browser]
  • Bug 42867: Disable contentRelevancy component [tor-browser]
  • Bug 42872: Disable translations until audited and solved the UX problems [tor-browser]
  • Bug 43054: check bounceTrackingProtection in PB mode does not persist to disk [tor-browser]
  • Bug 43072: moz-message-bar does not get announced on Orca screen-reader [tor-browser]
  • Bug 43083: Backport fix for Mozilla 1436462 [tor-browser]
  • Bug 43103: Verify whether an update is unsupported before choosing one [tor-browser]
  • Bug 43109: Remove mention of Firefox Relay from settings [tor-browser]
  • Bug 43117: Hide 'Always underline links' option [tor-browser]
  • Bug 43134: Backport Bugzilla 1436226Hardcode VP8/VP9 [tor-browser]
  • Bug 43144: Ensure non-privacy browsing also sets the GPC header [tor-browser]
  • Bug 43163: Disable offscreen canvas until verified it is not fingerprintable [tor-browser]
  • Bug 43164: Prevent search-bar from being auto-hidden when not used for awhile [tor-browser]
  • Bug 43178: Audit fingerprinting overrides (MozBug 1834274) [tor-browser]
  • Bug 43184: Backport Bugzilla 1922294: RFP: fixup square spoofed orientation [tor-browser]
  • Bug 43197: Disable automatic exception for HTTPS-First [tor-browser]
  • Bug 43209: UI freezes when clipboard is empty after screen lock [tor-browser]
  • Bug 43217: Fullscreen videos have rounded letterboxing corners [tor-browser]
  • Bug 43257: NoScript-blocked content placeholders causing slow downs [tor-browser]
  • Bug 43258: NoScript Lifecycle error on extension updates [tor-browser]
  • Bug 41248: Check and update bundled font versions [tor-browser-build]

Windows + macOS​

  • Bug 43021: Revert the OS deprecation notification introduced in #42347 [tor-browser]

Windows​

  • Bug 43051: windows: remove UI for "open Tor Browser automatically when computer starts" [tor-browser]

macOS​

  • Bug 42494: mac: add Arial Black and Arial Narrow to allowlist [tor-browser]

Linux​

  • Bug 42773: Replace ~ with the original HOME [tor-browser]
  • Bug 43092: Disable Wayland by default in 14.0 [tor-browser]
  • Bug 43101: Security features warning links to Firefox installation support page with incomplete info [tor-browser]
  • Bug 43141: Hardcode Arimo as a system-ui font [tor-browser]
  • Bug 43196: Remove the vendor name from the "is playing media" notification on Linux [tor-browser]
  • Bug 41237: Add some aliases to our Linux font config for compatibility [tor-browser-build]

Build System​

All Platforms​

  • Bug 43157: Move tb-dev to base-browser [tor-browser]
  • Bug 41096: Set SOURCE_DATE_EPOCH in the default env variables [tor-browser-build]
  • Bug 41155: Update toolchains for ESR128 [tor-browser-build]
  • Bug 41156: Split the Rust configuration options [tor-browser-build]
  • Bug 41176: Update list of people with github commit access in MB issue templates [tor-browser-build]
  • Bug 41188: Upgrade binutils to 2.41 [tor-browser-build]
  • Bug 41236: Remove binutils when not needed [tor-browser-build]
  • Bug 41256: tools/signing/upload-update_responses-to-staticiforme should regenerate update-responses when it already exists [tor-browser-build]
  • Bug 41259: Skip versions which don't set incremental_from when generating incrementals [tor-browser-build]
  • Bug 41260: Don't set legacy version for Mullvad Browser [tor-browser-build]
  • Bug 41274: Improve fetch_changelogs.py for major releases [tor-browser-build]
  • Bug 41279: Add @PieroV and @ma1 as new signers [tor-browser-build]
  • Bug 41289: Fix single-browser in relprep.py [tor-browser-build]

Windows + macOS​

  • Bug 41197: Modify update-responses to prevent upgrades on unsupported Windows and macOS versions [tor-browser-build]

Windows​

  • Bug 29318: Drop mingw-w64/gcc toolchain [tor-browser-build]
  • Bug 29320: Use mingw-w64/clang toolchain to build Rust [tor-browser-build]
  • Bug 41296: Implement missing Windows headers required for building cross-compiling WebRTC with mingw [tor-browser-build]

Linux​

  • Bug 41013: Add a README to each project [tor-browser-build]
  • Bug 41222: link_old_mar_filenames still referenced in torbrowser-incrementals-{release,alpha}-unsigned [tor-browser-build]
  • Bug 41243: Add own apparmor profile to deb package [tor-browser-build]
  • Bug 41282: Add SSL to our custom Python for MozBug 1924022 [tor-browser-build]

Download Mullvad Browser for Windows | macOS | Linux
 

Mullvad Browser 14.0.3​

All Platforms​

  • Updated Firefox to 128.5.0esr
  • Updated uBlock Origin to 1.61.0
  • Rebase Mullvad Browser stable onto Firefox 128.5.0esr [mullvad-browser]
  • Backport security fixes from Firefox 133 [tor-browser]

macOS​

  • Bug 43165: Disable Microsoft SSO on macOS [MozBug 1768724] [tor-browser]

Build System​

All Platforms​

  • Do not version the .nobackup files [tor-browser-build]
  • Update relprep.py script to not synchronise changelogs between channels [tor-browser-build]
  • Add bea, clairehurst, and jwilde to tb_builders [tor-browser-build]
  • Fix the Mullvad Extension update in relprep.py [tor-browser-build]

Download Mullvad Browser for Windows | macOS | Linux
 

Mullvad Browser 14.0.4​

All Platforms​

  • Updated Firefox to 128.6.0esr
  • Updated NoScript to 12.1.1
  • Updated uBlock Origin to 1.61.2
  • Bug 359: Remove 13.5 mullvad-browser fluent files from translation [mullvad-browser]
  • Bug 388: Rebase Mullvad Browser stable onto Firefox 128.6.0esr [mullvad-browser]
  • Bug 42125: lock RFP part 2 [tor-browser]
  • Bug 43176: noscript-marker CSP warnings in the console [tor-browser]
  • Bug 43269: NoScript localization issue [tor-browser]
  • Bug 43282: Unable to click/tap/select anything adjacent the WebGL placeholders [tor-browser]
  • Bug 43296: NoScript-blocked video content placeholder is not centered [tor-browser]
  • Bug 43338: Custom zoom + "Zoom text only" breaks pdfjs [tor-browser]
  • Bug 43352: Failing connection attempts to multicast IPv6 ff00:::443 logged during NoScript updates [tor-browser]
  • Bug 43366: Do not use system accent color in inputs [tor-browser]
  • Bug 43384: Backport security fixes from Firefox 134 [tor-browser]

Linux​

  • Bug 41311: AppArmor profile fails on Debian stable [tor-browser-build]
  • Bug 41313: Show waiting cursor while app opens [tor-browser-build]

Build System​

All Platforms​

  • Bug 41321: Update PieroV's expired keys [tor-browser-build]
  • Bug 41340: Update kick_devmole_build script with Mullvad's new GitHub workflow endpoint [tor-browser-build]

macOS​

  • Bug 41325: Newer versions of 7z fail to extract our dmg files because of the /Applications symlink [tor-browser-build]
  • Bug 41327: Print more logs when make_full_update.sh failed to generate mar file in dmg2mar [tor-browser-build]

Download Mullvad Browser for Windows | macOS | Linux
 

Mullvad Browser 14.0.5​

All Platforms​

  • Updated Firefox to 128.7.0esr
  • Updated Mullvad Browser Extension to 0.9.4
  • Updated uBlock Origin to 1.62.0
  • Bug 390: Rebase Mullvad Browser release onto Firefox 128.7.0esr [mullvad-browser]
  • Bug 41065: navigator.storage "best effort" + "persistent" leak partitionSize/totalSpace entropy [tor-browser]
  • Bug 43386: Extension requests expose Firefox's minor version and custom app name [tor-browser]
  • Bug 43451: Backport security fixes from Firefox 135 [tor-browser]

Linux​

  • Bug 43236: High refresh rate detectable by websites when Wayland (MOZ_ENABLE_WAYLAND=1) is used [tor-browser]

Build System​

All Platforms​

  • Bug 41324: Improve build signing ergonomics [tor-browser-build]
  • Bug 41343: Add signing step to clean some files such as test artifacts [tor-browser-build]
  • Bug 41350: Increase timeout in rcodesign-notary-submit [tor-browser-build]

Download Mullvad Browser for Windows | macOS | Linux
 

Mullvad Browser 14.0.7​

All Platforms​

  • Updated Firefox to 128.8.0esr
  • Bug 395: Set Mullvad Leta as default search engine [mullvad-browser]
  • Bug 398: Rebase Mullvad Browser release onto Firefox 128.8.0esr [mullvad-browser]
  • Bug 403: Backport Bugzilla 1915093: Don't prefetch HTTPS RR if proxyDNS is enabled [mullvad-browser]
  • Bug 43536: Backport security fixes from Firefox 136 [tor-browser]

macOS​

  • Bug 43468: ScreenCaptureKit framework should be a weak link [tor-browser]

Linux​

  • Bug 394: Missing package when try to install Mullvad Browser in Debian Trixie [mullvad-browser]

Build System​

All Platforms​

  • Bug 41380: Update kick-devmole script to use Mullvad's new GitHub action [tor-browser-build]

Linux​

  • Bug 41385: Copy only libstdc++.so.6 on Linux [tor-browser-build]

Download Mullvad Browser for Windows | macOS | Linux
 

Mullvad Browser 14.0.8​

This is a emergency security release for Windows.

Windows​

  • Bug 404: Incorrect information in about:rights [mullvad-browser]
  • Bug 43592: Backport security fixes from Firefox 128.8.1esr [tor-browser]

Build System​

Windows​

  • Bug 41375: Backport Bug 41374+40799: Remove support for migrate_archs and migrate_langs in update_responses + Remove legacy locale iteration in update-responses and dmg2mar [tor-browser-build]
  • Bug 41378: Backport Bug 41363: Make separate update_responses commit for each platform [tor-browser-build]
  • Bug 41383: Add clairehurst to list of accepted firefox/geckoview signers [tor-browser-build]
 

Mullvad Browser 14.0.9​

All Platforms​

  • Updated Firefox to 128.9.0esr
  • Updated uBlock Origin to 1.63.2
  • Bug 416: Rebase Mullvad Browser stable onto 128.9.0esr [mullvad-browser]
  • Bug 43601: Backport security fixes from Firefox 137 [tor-browser]

macOS + Linux​

  • Bug 404: Incorrect information in about:rights [mullvad-browser]
#Build System

All Platforms​

  • Bug 41420: Update the changelog script for label updates [tor-browser-build]

macOS + Linux​

  • Bug 41375: Backport Bug 41374+40799: Remove support for migrate_archs and migrate_langs in update_responses + Remove legacy locale iteration in update-responses and dmg2mar [tor-browser-build]
  • Bug 41378: Backport Bug 41363: Make separate update_responses commit for each platform [tor-browser-build]
  • Bug 41383: Add clairehurst to list of accepted firefox/geckoview signers [tor-browser-build]
 

Mullvad Browser 14.5​

All Platforms​

  • Bug 312: Apply Alpha and Nightly branding to unstable release channels [mullvad-browser]
  • Bug 324: Figure out how to handle string differences between mullvad release and mullvad tip [mullvad-browser]
  • Bug 410: Update learn more link text in about:mullvad-browser [mullvad-browser]
  • Bug 411: Use the same logic in about:mullvad-browser as the about dialog for the release notes [mullvad-browser]
  • Bug 412: Link the release page in the about dialog and clean brand-related preferences [mullvad-browser]
  • Bug 419: Create a Mullvad Browser version of migrateUI [mullvad-browser]
  • Bug 41051: Replace Noto Sans Myanmar with Pyidaungsu [tor-browser]
  • Bug 41755: Show the link to about:support in the help menu [tor-browser]
  • Bug 41919: Add temporarily visible web content-size overlay after resizing window when letterboxing is enabled [tor-browser]
  • Bug 42670: Letterboxing visible even if disable with tiled window managers [tor-browser]
  • Bug 42739: Fix localization in the profile error dialog [tor-browser]
  • Bug 43189: Remove privacy.resistFingerprinting.spoofOsInUserAgentHeader machinery entirely [tor-browser]
  • Bug 43205: newwin / letterboxing rounding with subpixels is off [tor-browser]
  • Bug 43257: NoScript-blocked content placeholders causing slow downs [tor-browser]
  • Bug 43323: Expose a stable asset from chrome:// to identify Tor, Base, and Mullvad Browser [tor-browser]
  • Bug 43334: Developer Tools lacks data for Responsive Design Mode and Compatibility [tor-browser]
  • Bug 43340: Support linux-aarch64 dev builds [tor-browser]
  • Bug 43551: Backport Mozilla Bug 1924070 - modify H.264 extradata to match sample conversion code. [tor-browser]
  • Bug 43632: Letterboxing size indicator may display data from a background tab [tor-browser]
  • Bug 43642: New tab shows letterboxing size indicator [tor-browser]
  • Bug 43653: privacy.resistFingerprinting.spoofOsInUserAgentHeader is still in our pref file even though we ripped out the code [tor-browser]

Windows​

  • Bug 43402: set browser.startup.blankWindow false [tor-browser]

Linux​

  • Bug 415: Load apparmor profile when configuring deb package [mullvad-browser]
  • Bug 30970: Different window borders in XFCE can lead to different, not rounded window sizes [tor-browser]
  • Bug 41799: Make lack of fonts.conf less of a footgun [tor-browser]
  • Bug 43140: Ship our FontConfig configuration with the browser [tor-browser]
  • Bug 43330: System fonts leak when emptying the allow list on Linux [tor-browser]
  • Bug 41297: Add video codecs dependencies (recommends) on the Debian package [tor-browser-build]
  • Bug 41298: Remove --detach parameter from .desktop files [tor-browser-build]
  • Bug 41312: Remove comment in start-browser about --class and --name parameters [tor-browser-build]

Build System​

All Platforms​

  • Bug 43295: Update MR templates [tor-browser]
  • Bug 43373: Do not run all CI jobs for scheduled jobs. [tor-browser]
  • Bug 40799: Remove legacy locale iteration in build and signing scripts [tor-browser-build]
  • Bug 41040: Add configuration to rbm.conf to select channel and platforms [tor-browser-build]
  • Bug 41281: Better dev defaults for fetch variable [tor-browser-build]
  • Bug 41288: Avoid unneeded git checkouts when possible [tor-browser-build]
  • Bug 41304: Add a browser commit tag+signing script [tor-browser-build]
  • Bug 41306: Container dependencies are sorted before resolving templates [tor-browser-build]
  • Bug 41307: Container dependencies are not filtered for duplicates [tor-browser-build]
  • Bug 41315: Fix the Mullvad Extension update in relprep.py [tor-browser-build]
  • Bug 41358: Update sign-tag script to handle rapid-release nightly branches [tor-browser-build]
  • Bug 41363: Change update-response generation script to create one commit per OS+arch tuple [tor-browser-build]
  • Bug 41365: Indent download*.json files [tor-browser-build]
  • Bug 41374: Remove support for migrate_archs and migrate_langs in update_responses [tor-browser-build]
  • Bug 41381: Usability improvements for the browser commit tagging script [tor-browser-build]
  • Bug 41382: Replace gitlab templates ReleasePrep label references with Apps::Type::ReleasePreparation [tor-browser-build]
  • Bug 41389: Remove need to update set-config.tbb-version [tor-browser-build]
  • Bug 41394: Fix upload-update_responses-to-staticiforme for mullvadbrowser [tor-browser-build]
  • Bug 41401: Replace Noto Sans Myanmar with Pyidaungsu [tor-browser-build]
  • Bug 41409: Create a script for quickly setting up protected branches [tor-browser-build]
  • Bug 41419: Add comment in downloads.json to mention that the file is deprecated, and that download-$platform.json should be used instead [tor-browser-build]
  • Bug 40006: Add option to avoid doing a git checkout when using the exec template function [rbm]
  • Bug 40079: Make fetch: if_needed fetch existing branches [rbm]
  • Bug 40081: Support apt option for not installing recommended dependencies [rbm]
  • Bug 40082: With fetch: if_needed, rbm is doing a git fetch when it shouldn't, when using a fixed commit [rbm]
  • Bug 40083: rbm creates out/$project directories with mode 0700 [rbm]

Windows + macOS​

  • Bug 41349: Wrong copyright year makes build non-reproducible [tor-browser-build]

macOS​

  • Bug 41403: The rcodesign step has a wrong dmg name in alpha [tor-browser-build]

Linux​

  • Bug 41266: Build the Tor and Mullvad Browsers for aarch64 Linux [tor-browser-build]
  • Bug 41329: Do not install python2.7-minimal in the linux-aarch64 firefox container [tor-browser-build]
  • Bug 41331: Make update_responses find linux-aarch64 mar files [tor-browser-build]
  • Bug 41335: linux-package project is not getting the channel target in testbuilds [tor-browser-build]
  • Bug 41397: Building mullvad-browser no longer generates .deb or .rpm packages [tor-browser-build]

Download Mullvad Browser for Windows | macOS | Linux
 

Mullvad Browser 14.5.1​

All Platforms​

  • Updated Firefox to 128.10.0esr
  • Bug 421: Rebase Mullvad Browser release onto 128.10.0esr [mullvad-browser]
  • Bug 43659: Set new tabs to default to Tor Browser Home (about:tor) on desktop [tor-browser]
  • Bug 43672: Incorrect initial letterbox size when the interface font size is 13px. [tor-browser]
  • Bug 43691: Backport security fixes from Firefox 138 [tor-browser]

Build System​

All Platforms​

  • Bug 41435: Skip update-responses update entries for versions without incremental or full update mar [tor-browser-build]

Download Mullvad Browser for Windows | macOS | Linux
 

Mullvad Browser 14.5. 2​

All Platforms​

  • Updated Firefox to 128.10.1esr-
  • Updated NoScript to 12.6
  • Updated uBlock Origin to 1.64.0
  • Bug 438: Rebase Mullvad Browser stable onto 128.10.1 [mullvad-browser]
  • Bug 43397: Click to play should override "Any capability blocked in the top document must be blocked in its subdocuments too" [tor-browser]
  • Bug 43635: Console noise due to the x-load capability not being localized [tor-browser]
  • Bug 43738: Backport Bugzilla 1947157: Move linux security warning content into own page [tor-browser]
  • Bug 41460: Add brizental to the list of people who can sign Tor Browser and Mullvad Browser tags [tor-browser-build]

Download Mullvad Browser for Windows | macOS | Linux
 

Mullvad Browser 14.5.3​

All Platforms​

  • Updated Firefox to 128.11.0esr
  • Updated NoScript to 13.0.6
  • Bug 439: Rebase Mullvad Browser stable onto 128.11.0esr [mullvad-browser]
  • Bug 43811: Backport security fixes from Firefox 139 [tor-browser]

Download Mullvad Browser for Windows | macOS | Linux
 

You may also like...