Jump to content
CCleaner Community Forums

trium

Experienced Members
  • Content Count

    2,235
  • Joined

  • Last visited

Posts posted by trium

  1. ff v78.10.0 esr

    19. april 2021

    Fixed

    Quote

    Security Vulnerabilities fixed in Firefox ESR 78.10

    Announced April 19, 2021
    Impact high
    Products Firefox ESR
    Fixed in
    • Firefox ESR 78.10

    #CVE-2021-23994: Out of bound write due to lazy initialization

    Reporter Abraruddin Khan and Omair
    Impact high
    Description

    A WebGL framebuffer was not initialized early enough, resulting in memory corruption and an out of bound write.

    References

    #CVE-2021-23995: Use-after-free in Responsive Design Mode

    Reporter Irvan Kurniawan
    Impact high
    Description

    When Responsive Design Mode was enabled, it used references to objects that were previously freed. We presume that with enough effort this could have been exploited to run arbitrary code.

    References

    #CVE-2021-23998: Secure Lock icon could have been spoofed

    Reporter Jordi Chancel
    Impact moderate
    Description

    Through complicated navigations with new windows, an HTTP page could have inherited a secure lock icon from an HTTPS page.

    References

    #CVE-2021-23961: More internal network hosts could have been probed by a malicious webpage

    Reporter Samy Kamkar, Ben Seri, and Gregory Vishnepolsky
    Impact moderate
    Description

    Further techniques that built on the slipstream research combined with a malicious webpage could have exposed both an internal network's hosts as well as services running on the user's local machine.

    References

    #CVE-2021-23999: Blob URLs may have been granted additional privileges

    Reporter Nika Layzell
    Impact moderate
    Description

    If a Blob URL was loaded through some unusual user interaction, it could have been loaded by the System Principal and granted additional privileges that should not be granted to web content.

    References

    #CVE-2021-24002: Arbitrary FTP command execution on FTP servers using an encoded URL

    Reporter Daniel Santos
    Impact moderate
    Description

    When a user clicked on an FTP URL containing encoded newline characters (%0A and %0D), the newlines would have been interpreted as such and allowed arbitrary commands to be sent to the FTP server.

    References

    #CVE-2021-29945: Incorrect size computation in WebAssembly JIT could lead to null-reads

    Reporter Christian Holler
    Impact moderate
    Description

    The WebAssembly JIT could miscalculate the size of a return type, which could lead to a null read and result in a crash.
    Note: This issue only affected x86-32 platforms. Other platforms are unaffected.

    References

    #CVE-2021-29946: Port blocking could be bypassed

    Reporter Frederik Braun
    Impact low
    Description

    Ports that were written as an integer overflow above the bounds of a 16-bit integer could have bypassed port blocking restrictions when used in the Alt-Svc header.

    References

     

  2. ff v88.0

    19. april 2021

    New

    • PDF forms now support JavaScript embedded in PDF files. Some PDF forms use JavaScript for validation and other interactive features.

    • Print updates: Margin units are now localized.

    • Smooth pinch-zooming using a touchpad is now supported on Linux

    • To protect against cross-site privacy leaks, Firefox now isolates window.name data to the website that created it. Learn more

    Fixed

    • Screen readers no longer incorrectly read content that websites have visually hidden, as in the case of articles in the Google Help panel.

    • Various security fixes.

    Changed

    • Firefox will not prompt for access to your microphone or camera if you’ve already granted access to the same device on the same site in the same tab within the past 50 seconds. This new grace period reduces the number of times you’re prompted to grant device access.

    • The ‘Take a Screenshot’ feature was removed from the Page Actions menu in the url bar. To take a screenshot, right-click to open the context menu. You can also add a screenshots shortcut directly to your toolbar via the Customize menu. Open the Firefox menu and select Customize…

    • FTP support has been disabled, and its full removal is planned for an upcoming release. Addressing this security risk reduces the likelihood of an attack while also removing support for a non-encrypted protocol.

    Enterprise

    Developer

    Developer Information

    • Introduced a new toggle button in the Network panel for switching between JSON formatted HTTP response and raw data (as received over the wire).
      enter image description here

    Get the most recent version

  3. today his royal highness prince philip mountbatten (von battenberg, -> von schleswig-holstein-sonderburg-glücksburg und hessen), the duke of edinburgh

    is passed away after a long life with the age of 99.

     

    my deepest sympathy for his family... in great britain, greece, danmark, germany...

     

    prinz philip mit 99 gestorben am 09_04_2021.jpg

  4. tools -> software updater...

     

    please add all your own (piriform/avast) apps into the scan-process if this are installed and show if this "up-to-date-programs" or "programs to update"

    in my case it shows only speccy

    but there are also

    1. recuva
    2. defraggler
    3. ccleaner (ofcourse)
    4. ccleaner cloud
    5. and so on (avg or avast-av)
    6. (perhaps ccleaner browser + kamo)

    i mean these programs should definitely be included in the search list.

  5. one problem already seems to be there in version 5.77

     

    not showing the category "other files" - it shows " " amount of files but the size showing

     

    in ccleaner v5.57 its all fine - it shows also the "other files"  for example *.exe or *.sys and so on

  6. ps:

    there could be a little problem. i used different drives to search and it is as you write, sometimes it dont show the details.

    only after repeated attempts it will show detailed file-infos

  7. 9 hours ago, Léon said:

    Is this function suddenly minimized?

    i mean no...

    if i click on "musik" it shows me every single *.mp3 with name, size and so on... but its need 1 or 2 seconds to show

    do you mean this?

  8. @BeeGee

    can i ask you what the hardware is? cpu, ram, etc...?

     

    a little help perhaps for your overheading laptop:

    go to energy settings from your w7 -> advanced powersettings -> processor power management -> Maximum performance state of the processor:

    set it for example to 60 or 70 or 80 % <--- this will prevent your cpu from the inbuild self-overtuning and reduced the maximum GHz or MHz to a lower level but with enough power to work with it (not to game 🙂 )

    this will also reduce the heat from your cpu

     

    let you run your laptop only with akku or fixed powerconnection?

    look at advanced powersettings -> processor power management -> system cooling policy

    look at akku: ? passive <--- if you use your laptop most with akku - perhaps try to set on active?

    look at power: ? active

  9. On 18/03/2021 at 22:04, Bigyun2000UK said:

    Hi all.  I just purchased CCleaner Professional PLUS.

    How do I access the Disc Defragmentation, File Recovery and Hardware Inventory?

     

    i have this question for some time ago...there should be a one file installer to download...

    Quote

    If you download the Professional Plus installer (link in your confirmation email after purchase) then you should be greeted with this on the second screen after you select your language:

     image.png

     

  10. ff v78.9.0 esr

    23. march 2021

    Fixed

    Quote

    Security Vulnerabilities fixed in Firefox ESR 78.9

    Announced March 23, 2021
    Impact high
    Products Firefox ESR
    Fixed in
    • Firefox ESR 78.9

    #CVE-2021-23981: Texture upload into an unbound backing buffer resulted in an out-of-bound read

    Reporter Omair
    Impact high
    Description

    A texture upload of a Pixel Buffer Object could have confused the WebGL code to skip binding the buffer used to unpack it, resulting in memory corruption and a potentially exploitable information leak or crash.

    References

    #CVE-2021-23982: Internal network hosts could have been probed by a malicious webpage

    Reporter Samy Kamkar, Ben Seri, and Gregory Vishnepolsky
    Impact moderate
    Description

    Using techniques that built on the slipstream research, a malicious webpage could have scanned both an internal network's hosts as well as services running on the user's local machine utilizing WebRTC connections.

    References

    #CVE-2021-23984: Malicious extensions could have spoofed popup information

    Reporter Rob Wu
    Impact moderate
    Description

    A malicious extension could have opened a popup window lacking an address bar. The title of the popup lacking an address bar should not be fully controllable, but in this situation was. This could have been used to spoof a website and attempt to trick the user into providing credentials.

    References

    #CVE-2021-23987: Memory safety bugs fixed in Firefox 87 and Firefox ESR 78.9

    Reporter Mozilla developers and community
    Impact high
    Description

    Mozilla developers and community members Alexis Beingessner, Tyson Smith, Julien Wajsberg, and Matthew Gregan reported memory safety bugs present in Firefox 86 and Firefox ESR 78.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.

    References
  11. ff v87.0

    23. march 2021

    New

    • You’ll encounter less website breakage in Private Browsing and Strict Enhanced Tracking Protection with SmartBlock, which provides stand-in scripts so that websites load properly.

    • To further protect your privacy, our new default HTTP Referrer policy will trim path and query string information from referrer headers to prevent sites from accidentally leaking sensitive user data.

    • The “Highlight All” feature on Find in Page now displays tick marks alongside your scrollbar that correspond to the location of matches found on that page.

    • We’re proud to announce full support for macOS built-in screen reader, VoiceOver.

    • We’ve added a new locale: Silesian (szl)

    Fixed

    • We’ve fixed several significant accessibility issues:

      • Video controls now have visible focus styling and video and audio controls are now keyboard navigable. (Bug 1681007)
      • HTML <meter> is now spoken by screen readers. (Bug 1460378)
      • Firefox now sets a useful initial focus in Add-ons Manager. (Bug 580537)
      • Firefox will now fire a name/description change event when aria-labelledby/describedby content changes. (Bug 493683)
    • Various security fixes.

    Changed

    • To prevent user data loss when filling out forms, we’ve disabled the Backspace key as a navigation shortcut for the back navigation button. To re-enable the Backspace keyboard shortcut, you can change the about:config preference browser.backspace_action to 0. You can also use the recommended Alt + Left arrow (Command + Left arrow on Mac) shortcut instead.
      Firefox keyboard shortcuts

    • We've removed items from the Library menu that weren't used often or have other access points in the browser: Synced tabs, Recent highlights, and Pocket list.

    • We've simplified the Help menu by reducing redundant items, such as those that point to Firefox support pages that can also be accessed via the Get Help item.

    Enterprise

    Developer

    Developer Information

    • We've greatly simplified the Web Developer menu. Go to Application Menu > Web Developer > Web Developer Tools to access Inspector, Web Console, Debugger, Network Style Error, Performance, Storage Inspector, Accessibility, and Application

    • Developers can now use the Page Inspector to simulate prefers-color-scheme media queries, without having to change the operating system to light or dark mode.

    • Developers can now use the Page Inspector to toggle the :target pseudo-class for the currently selected element in addition to the pseudo-classes that were previously supported: :hover, :active and :focus, :focus-within, :focus-visible, and :visited.

    • There is a number of Page Inspector improvements and bug fixes related to inactive CSS rules:

      • The table-layout property is now marked as inactive for non-table elements.
      • The scroll-padding properties (shorthand and longhand) are now marked as inactive for non-scrollable elements.
      • The text-overflow property was previously incorrectly marked as inactive for some overflow values.
  12. yes, of course you can also take it that way. the translator has to weigh that up whats good or not so good. i personally mean that "Duplikate Finder" sounds unpleasant

    besides with this additional tool in ccleaner in german -> wir finden nicht -> wir suchen Duplikate; and because its not a own single tool but rather part of the ccleaner i mean "Duplicate Finder" is only in german "Dupikate finden" as an activity - not as its own single tool/app.

    another suggestion:

    german new "Duplikate suchen"

     

    but since it is written in the english original... can it be as its in english in the main as you say

  13. On 20/03/2021 at 22:24, nukecad said:

    PS. They don't 'take remote control' of your computer, I'd be suspicious/cautious of anyone who wants to do that.

    ... there are companies that take remote control 🙂 i remember me darkly an av known as part of avast to solve this or another problem. but not with windows own tool instead its own remote tool.

  14. ccleaner -> tools -> software updater

     

    there is an graphic issue with minimal size of ccleaner window in german.

     

    if ccleaner is offline after a while it shows a message

    "It seems like your offline"

    "Please check your internet connection and try again"

     

    in german:

    "Sie scheinen offline zu sein"

    "Bitte prüfen Sie Ihre Internetverbindung und versuchen es erneut"

     

    the last word of the sentence "...erneut" is only at half displayed!

     

    -> i mean -> apply the automatic placeholder on the size of the ccleaner window and on the size of the translated text?

×
×
  • Create New...