Hiển thị các câu hỏi được đánh dấu: Xem tất cả các câu hỏi

Zero Day

Does MacOS requires the version 131.0.2 Firefox update to address the recent zero-day active exploit? The reason I ask is Tanium Deploy Software Gallery only includes … (xem thêm)

Does MacOS requires the version 131.0.2 Firefox update to address the recent zero-day active exploit?

The reason I ask is Tanium Deploy Software Gallery only includes updates to Windows Firefox versions to address this zero-day.

Description: Mozilla 0-day. CVE-2024-9680 is a use after free vulnerability in the Animation timelines component of Mozilla. Animation timelines are a part of Firefox’s Web Animations API, which controls and synchronizes animations on the web pages. An attacker may exploit the vulnerability to achieve code execution in the content process. Use-after-free vulnerability occurs when the memory that has been freed is still used by the program. The vulnerability may allow attackers to add their malicious data to the memory region for code execution. *Affected Versions* * Firefox versions before 131.0.2 * Firefox ESR versions before 128.3.1 * Firefox ESR versions before 115.16.1. *Mitigation* Customers can upgrade to the following versions to mitigate the vulnerability: * Firefox 131.0.2 * Firefox ESR 128.3.1 * Firefox ESR 115.16.1 For more information, please refer to the [Mozilla security advisory|https://www.mozilla.org/en-US/security/advisories/mfsa2024-51/].

Được hỏi bởi Robert Bogan 28 phút trước

Have to keep denying cookies every few hours

Hey all firefox doesnt save the preferences for long and every site I go back to I have to keep denying cookies etc. This started recently but my settings are as before w… (xem thêm)

Hey all firefox doesnt save the preferences for long and every site I go back to I have to keep denying cookies etc. This started recently but my settings are as before whats up with this? I think its the total cookie protection but i cannot turn it off I'm fed up of denying over and over again. cheers

Được hỏi bởi Elvas K 3 giờ trước

मीशो की कंपनी वाले से बात कैसे करते हैं l -

मीशो की कंपनी वाले से बात कैसे करते हैं? मीशो कस्टमर केयर पर कॉल कर (+91)789-469(√3091)-सकते हैं। आप मीशो कस्टमर केयर को पर कॉल कर सकते हैं। आप पर ईमेल (078946-93091-) है… (xem thêm)

मीशो की कंपनी वाले से बात कैसे करते हैं? मीशो कस्टमर केयर पर कॉल कर (+91)789-469(√3091)-सकते हैं। आप मीशो कस्टमर केयर को पर कॉल कर सकते हैं। आप पर ईमेल (078946-93091-) हैं।10 hours ago

Được hỏi bởi Samir Ansari 7 giờ trước

Lần cuối trả lời bởi Samir Ansari 7 giờ trước

Autofill credit cards isn't filling?

For a credit card field, my card options show up. When I choose one it fills, but when I hit enter or tab, the filled info disappears. It appears to be this (2nd) proble… (xem thêm)

For a credit card field, my card options show up. When I choose one it fills, but when I hit enter or tab, the filled info disappears.

It appears to be this (2nd) problem and known fixed bug. But it was fixed in v118, and I'm using v125.03 and it's still happening. https://support.mozilla.org/questions/1416148 https://bugzilla.mozilla.org/show_bug.cgi?id=1817926

(I whited out the card numbers.)

Được hỏi bởi curls3 2 tuần trước

Hiding IP Address

When i search something on Google it shows the results based on my IP address. Towards the bottom of the search results at the bottom of the webpage the location of the I… (xem thêm)

When i search something on Google it shows the results based on my IP address. Towards the bottom of the search results at the bottom of the webpage the location of the IP address mentions the city I live in.

I frequently share my screen and don't want to share that information with others. How can I remove that information from appearing when I search for something on Google?

Được hỏi bởi Thomas Maalouf 17 giờ trước

adding an extension

Kaspersky has been changed to UltraAV so I need to add or change this extension in my settings. Also will Kaspersky need to be deleted? thx . THe reason for this is becau… (xem thêm)

Kaspersky has been changed to UltraAV so I need to add or change this extension in my settings. Also will Kaspersky need to be deleted? thx . THe reason for this is because Firefox will not restart after an updated has been downloaded.

Được hỏi bởi Kathy Seymour 23 giờ trước

Macafee antivrius virus.

Upon launching Firefox I noticed a notification from Macafee antivirus, I don't really care how to spell their "company" name. But when clicking on the popup it brought m… (xem thêm)

Upon launching Firefox I noticed a notification from Macafee antivirus, I don't really care how to spell their "company" name. But when clicking on the popup it brought me to a firefox addon for macafee. I assume that this is a virus created by the aforementioned company and not a partnership between the two of you. Just wanted to create awareness of this virus as its targeting your browser.

Được hỏi bởi Timothy Wheeler 23 giờ trước

Protections against Tracking via HTTP/3 QUIC - Privacy

Hello Mozilla Community, I hope I am right with you guys to ask this question though it is a rather technical question. Please let me clarify that I am not a programmer … (xem thêm)

Hello Mozilla Community,

I hope I am right with you guys to ask this question though it is a rather technical question. Please let me clarify that I am not a programmer myself or a network engineer but rather a hobbyist who is especially interested in privacy.

As I was reading about HTTP/3 and QUIC, I came across an academic paper called ""A QUIC Look at Web Tracking".

According to this paper QUIC gives web servers and third parties a good way to track users via the "source-address token" and the "server config" which are both stored on the client('s browser/machine). Now I know that this paper is from 2019 and concerns an older version of QUIC. However, in RFC 9000 "source address tokens" aka "address validation tokens" still exist and are especially used to establish future connections with 0-RTT instead of 1-RTT (see section 8.1 of RFC 9000). Though "server config" is not mentioned in RFC 9000, "transport parameters" is mentioned in section 7.4 and 18 of RFC 9000, which are also used for 0-RTT and are also stored on the client.

Neither RFC 9000 nor RFC 9114, which concerns HTTP3, address these privacy risks in more detail. Both seem to take only MITM attackers into account (see 9.5 in RFC 9000 and 10.11 in RC 9114) [as is done in a newer paper from 2022 Evaluating QUIC for Privacy Improvements Over Its Predecessors which however at least addresses the possibility of third party tracking under 5.1 3)].

I would also like to point towards RFC 9250 of May 2022, which concerns DNS over QUIC ("DoQ"). In Section 7 of RFC 9250 many privacy concerns regarding "0-RTT", "Session Resumption (Token)", "Address Validation Token" and "Long Duration Sessions due to QUIC's connection migration feature" are elaborated in more detail.

To sum up my understanding: - Using HTTP/3 or QUIC's "connection ID" for tracking should not be that viable, even if its function is to migrate connections in case of Layer-3/4 (IP address or Port) changes, because a connections life time is at least in firefox limited to 30 seconds (see Github neqo) so that a user should not be trackable for a longer period via the "connection ID". - However, longer tracking may be possible via "Session Resumption Tokens" and "Address Validation Tokens" (see Section 7.2 and 7.3 of RFC 9250; though I myself don't know the difference between these two) as well as via "transport parameters" (see "A QUIC Look at Web Tracking").

As mentioned in "A QUIC Look at Web Tracking", though a restart of the Browser seems to clear the cached state of prior QUIC connections (to my understanding the stored "tokens" and "transport parameters"), tracking via the above mentioned features of QUIC seems not unreasonable as many users today will not restart their browser, especially on mobile devices but also on desktops (3.7 and 5.1.2 of the paper).

As I was not able to find further information on this topic, I would be very happy to get some assurance that firefox is effectively preventing or at least impeding the tracking possibilities mentioned in RFC 9250 and the paper "A QUIC Look at Web Tracking".

Thank you very much for any reply or pointing me into the right direction (other sources on this topic or a more appropriate page to ask this question).

Được hỏi bởi radi99 1 ngày trước

Firefox keeps asking for primary password

Issue with primary password, I'd appreciate if someone could shine a light on this issue. I feel I'm wasting time unnecessary. Here it comes: On a given day and out of t… (xem thêm)

Issue with primary password, I'd appreciate if someone could shine a light on this issue. I feel I'm wasting time unnecessary. Here it comes:

On a given day and out of the blue Firefox starts asking for primary password whenever it needs to save a password for a website. I type my password to no avail. I'm logged in, I can sync but I can't see saved passwords. I reset my password with recovery key. I set a new password. I log in my account. I can see my browsing history but same problem.

Any ideas on how to solve this? Thanks in advance

Được hỏi bởi milupas 1 ngày trước

My life is being threatened which topic best which topic best describes

I have rice to live no one has the right to threaten my life with black magic triangles the cloud Microsoft Google and Moselle I see you in court I have a power of attorn… (xem thêm)

I have rice to live no one has the right to threaten my life with black magic triangles the cloud Microsoft Google and Moselle I see you in court I have a power of attorney and a lawyer tomorrow about time I have the biggest story in the Bay area I'll have much time to tell my story but God gave me this time to tell it Michael thank you for doing me the way you done me you two Alabama YouTube cat with a k Robert you too Denise Kim especially you my family I can't see the serpents in my head I'm a whole body snake somebody better get something to cure me and I mean fast I got daggers in my heart fix it fix it share my data share s*** cement took my cement synonym

Được hỏi bởi Shermona Littlejohn 1 ngày trước

OSX Issues

Firefox 131.0(aarch64) OSX 15.0.1 1st Issue: The 'Clear Cache' doesn't seem to completely clear the cache. Eg: I'm logged into gmail, I go to Privacy & Security and … (xem thêm)

Firefox 131.0(aarch64) OSX 15.0.1

1st Issue: The 'Clear Cache' doesn't seem to completely clear the cache. Eg: I'm logged into gmail, I go to Privacy & Security and then click Clear Cache and History. I navigate back to gmail. I'm still logged in.

2nd Issue: When I right click and 'Open Link in New Private Window' this doesn't actually take me to a private window. I have to select File/New Private Window and paste the link to that window.

Được hỏi bởi events stage 3 ngày trước

Lần cuối trả lời bởi events stage 2 ngày trước

Local file access blocked on Ubuntu 24.04.1 LDS Firefox snap version

I just wasted 3 hours trying to figure out why my ComfyUI (local AI image generator) stopped working with Firefox. There were no error messages from ComfyUI, it just fai… (xem thêm)

I just wasted 3 hours trying to figure out why my ComfyUI (local AI image generator) stopped working with Firefox. There were no error messages from ComfyUI, it just failed to load workflow files.

It turns out that it's because Firefox is installed as a snap package and wherever the snap configuration for Firefox lives thinks it knows better than I do what files and directories on my system I can access in Firefox.

I also had this problem with trying to open PDFs in my home directory where I kept getting access denied errors. I tried to solve the problems with the snap version and found several proposed solutions by google search which people claimed worked but did not.

I finally found a web page that described how to uninstall the snap package and install an alternate non-snap version of Firefox, and now everything works like I expect it to.

How do I make sure this snap version does not ever come back?

Được hỏi bởi David Wootton 2 ngày trước

Autofill payment methods does not function

Macbook Air - Payments methods are in place in firefox. When hover over payment method required can see payment options but when select does insert payment method in … (xem thêm)

Macbook Air -

Payments methods are in place in firefox. When hover over payment method required can see payment options but when select does insert payment method in field. requires authentication is not activated

Được hỏi bởi RPM 2 ngày trước

Lần cuối trả lời bởi RPM 2 ngày trước

Firefox No longer supported by my bank. They say it is insecure!

Having spent a frustrating weelend being unable to log into Coventry Building Society's online banking app, I 'phoned the this morning to be told they consider Firefox in… (xem thêm)

Having spent a frustrating weelend being unable to log into Coventry Building Society's online banking app, I 'phoned the this morning to be told they consider Firefox insecure and no longer support its use. The app accepts my username & password, tells me they are going to 'phone me with an access code and then displays "Page not found". Anyone know of any other bank or similar who would believe Firefox to be insecure?

Được hỏi bởi john800 3 ngày trước

Lần cuối trả lời bởi john800 3 ngày trước

Firefox Ocsp fails at loading private https website

Hello, i have precisely explained issue here with different screens. i would like to have your feedback https://stackoverflow.com/questions/78995057/firefox-ocsp-fails… (xem thêm)

Hello,

i have precisely explained issue here with different screens. i would like to have your feedback


https://stackoverflow.com/questions/78995057/firefox-ocsp-fails-at-loading-private-https-website

order of images is important there are almost 10 different images in uri linked

Được hỏi bởi Thierry Brémard 3 ngày trước

Can't logout from multipe websites (drawboard.com and offerup.com).

I have online accounts with both drawboard.com and offerup.com. Neither of these websites will finish logging out when I click log out on Firefox. I assume it's a Firefox… (xem thêm)

I have online accounts with both drawboard.com and offerup.com. Neither of these websites will finish logging out when I click log out on Firefox. I assume it's a Firefox issue as I do not have the same problem with Safari or Chrome when I've tried. I really don't want to stay logged in to those websites when I'm not using them. On Drawboard, the logout page just gets stuck there and won't change even if I refresh. On Offerup, it doesn't do anything at all.

Been trying to log out of offerup for weeks even with their help desk. Please help, thanks.

Được hỏi bởi hbrianh79 5 ngày trước