MozillaFirefox-translations-other-128.5.1-150200.152.164.1<>,XgNp9|YB3i{rBDWY!V]{^^`2Rt' ;BD('a_4|57O"D]$y[NY\'ߗAL=h0ٓG.N+.;<ۆ}{aL:OO\?''#,rHfr|xTqJ3f1Ib+DŽqqQm[_ pa8"P&gS Roa!7߄ _loeU)êc>>>?d$, = \ ,DJTNN (N N N JN NNVN ND ( B8 L9$T::BwnFwGwNHxNIzNXzdYzpZz[z\zN]{N^b@cdrewfzl|uNvz=PTZCMozillaFirefox-translations-other128.5.1150200.152.164.1Extra translations for FirefoxThis package contains rarely used languages for the user interface of Firefox.gNh01-armsrv2hSUSE Linux Enterprise 15SUSE LLC MPL-2.0https://www.suse.com/System/Localizationhttp://www.mozilla.org/linuxaarch64ORIJh *gI94ae J@=@rr!/ r"I^u 7yl < < 'd *5nN8Hw"  $=  OB"x Y Џ 'p?< 7 sX  )U~ RfAA큤gNӯgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚgNӚ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-128.5.1-150200.152.164.1.src.rpmMozillaFirefox-translations-otherMozillaFirefox-translations-other(aarch-64)locale(MozillaFirefox:ach;af;an;ast;az;be;bg;bn;br;bs;cak;cy;dsb;en_CA;eo;es_MX;et;eu;fa;ff;fy_NL;ga_IE;gd;gl;gn;gu_IN;he;hi_IN;hr;hsb;hy_AM;ia;id;is;ka;kab;kk;km;kn;lij;lt;lv;mk;mr;ms;my;ne_NP;nn_NO;oc;pa_IN;rm;ro;si;sk;sl;son;sq;sr;ta;te;th;tr;uk;ur;uz;vi;xh)    MozillaFirefoxrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)128.5.13.0.4-14.6.0-14.0-15.2-14.14.1gM@gDfggp@f@f@f'@fwf=@f@faf;i@f-ere@eBeeexK@eV@e.w@e@e 0@eRd dd\@d dD@d@dx@dX@d.@d c1cGcclcN@c$e@cc@b?b@bbbi0@bL/@bDF@b3"b0b(b%b[@a@aq@a*@aLa@a(@apa\>@aV@a9@a8a@aaj@`#@`@`!@``}p`[)`4@`!'`@__إ@_@_/@_@_u_i@_a@_a@_D@_C_6|_*@_'@_ @_^@^z^)@^?@^V@^U@^k@^v^t@^g@^B@^&^^r]N@]]@]d@]]@]]n]@]z@]@]v>] ] #] #\\@\ޢ@\ڭ\@\!\f\e\@\\u*@\d\Q\@n@\@\@\@[ @[;@[@[@[h@[3|@[@ZZZ2@ZZ@Z}@Zg#Z_:Z]@ZF.@Z3@Z+@Z YYχ@Y5Y@Y@YY\YA%@Y$$@Y]XX9@X9@X@XXCX@X6@XXN@XJX@X)@X W%W@W$Wu@WF@WWWW9WE@W\@W@Ws@WaC@W_W^@W^@WV@WEWBW4p@W)@W(W W WW @W VVV@V>@VwVVV@VuVm]VHsV4@V@VV @UN@UUĝUĝU@UUt2@U`kUUUUUOH@U0UUUQU ]@U T@T!TT@T*@Ty@T\@TXTWn@TWn@TR(@TO@TKTCT>amartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.comcgrobertson@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commeissner@suse.commartin.sirringhaus@suse.comcgrobertson@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.comcgrobertson@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.comcgrobertson@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.comcgrobertson@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.comandreas.stieger@gmx.demartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.comcgrobertson@suse.comcgrobertson@suse.commartin.sirringhaus@suse.comcgrobertson@suse.commartin.sirringhaus@suse.comwilliam.brown@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.comcgrobertson@suse.comcgrobertson@suse.comcgrobertson@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.comcgrobertson@suse.comcgrobertson@suse.comcgrobertson@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.comcgrobertson@suse.commartin.sirringhaus@suse.comcgrobertson@suse.comcgrobertson@suse.commartin.sirringhaus@suse.comcgrobertson@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.comandreas.stieger@gmx.decgrobertson@suse.commartin.sirringhaus@suse.comcgrobertson@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.comcgrobertson@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.comcgrobertson@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.comcgrobertson@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.commartin.sirringhaus@suse.comcgrobertson@suse.comcgrobertson@suse.compsimons@suse.comjkowalczyk@suse.comcgrobertson@suse.comcgrobertson@suse.comcgrobertson@suse.comcgrobertson@suse.comalarrosa@suse.comcgrobertson@suse.comcgrobertson@suse.comkbabioch@suse.decgrobertson@suse.comcgrobertson@suse.comalarrosa@suse.comalarrosa@suse.comalarrosa@suse.comcgrobertson@suse.compcerny@suse.compcerny@suse.compcerny@suse.comwr@rosenauer.orgastieger@suse.comwr@rosenauer.orgwr@rosenauer.orgastieger@suse.comwr@rosenauer.orgwr@rosenauer.orgwbauer@tmo.atcgrobertson@suse.comastieger@suse.comfcrozat@suse.comsecurity@suse.comwr@rosenauer.orgstefan.bruens@rwth-aachen.dezaitor@opensuse.orgwr@rosenauer.orgdimstar@opensuse.orgschwab@suse.dewr@rosenauer.orgastieger@suse.comwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgastieger@suse.comwr@rosenauer.orgwr@rosenauer.orgcgrobertson@novell.comwr@rosenauer.orgwr@rosenauer.orgastieger@suse.combadshah400@gmail.comastieger@suse.comwr@rosenauer.orgastieger@suse.comastieger@suse.comwr@rosenauer.orgpcerny@suse.combadshah400@gmail.comwr@rosenauer.orgbadshah400@gmail.comantoine.belvire@laposte.netmailaender@opensuse.orgastieger@suse.comwr@rosenauer.orgbadshah400@gmail.comagraf@suse.comwr@rosenauer.orgwr@rosenauer.orgbadshah400@gmail.combadshah400@gmail.comdsterba@suse.czwr@rosenauer.orgnormand@linux.vnet.ibm.combadshah400@gmail.comwr@rosenauer.orgbadshah400@gmail.combadshah400@gmail.comastieger@suse.comastieger@suse.comwr@rosenauer.orgolaf@aepfle.deastieger@suse.comwr@rosenauer.orgdmueller@suse.comwr@rosenauer.orgastieger@suse.comwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgschwab@suse.dewr@rosenauer.orgwr@rosenauer.orgnormand@linux.vnet.ibm.comwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgdvaleev@suse.comwr@rosenauer.orgdimstar@opensuse.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgwr@rosenauer.orgledest@gmail.comwr@rosenauer.orgwr@rosenauer.orgguillaume@opensuse.orgdmueller@suse.comjosua.mayer97@gmail.comwr@rosenauer.orgjosua.mayer97@gmail.comwr@rosenauer.orgvindex17@outlook.itwr@rosenauer.org- Firefox Extended Support Release 128.5.1 ESR * Fixed: Fixed an issue that prevented some websites from loading when using SSL Inspection. (bmo#1933747)- Firefox Extended Support Release 128.5.0 ESR * Fixed: Various security fixes and other quality improvements. MFSA 2024-64 (bsc#1233695) * CVE-2024-11691 (bmo#1914707, bmo#1924184) Out-of-bounds write in Apple GPU drivers via WebGL * CVE-2024-11692 (bmo#1909535) Select list elements could be shown over another site * CVE-2024-11693 (bmo#1921458) Download Protections were bypassed by .library-ms files on Windows * CVE-2024-11694 (bmo#1924167) CSP Bypass and XSS Exposure via Web Compatibility Shims * CVE-2024-11695 (bmo#1925496) URL Bar Spoofing via Manipulated Punycode and Whitespace Characters * CVE-2024-11696 (bmo#1929600) Unhandled Exception in Add-on Signature Verification * CVE-2024-11697 (bmo#1842187) Improper Keypress Handling in Executable File Confirmation Dialog * CVE-2024-11698 (bmo#1916152) Fullscreen Lock-Up When Modal Dialog Interrupts Transition on macOS * CVE-2024-11699 (bmo#1880582, bmo#1929911) Memory safety bugs fixed in Firefox 133, Firefox ESR 128.5, and Thunderbird 128.5- Firefox Extended Support Release 128.4.0 ESR * Fixed: Various security fixes and other quality improvements. MFSA 2024-56 (bsc#1231879) * CVE-2024-10458 (bmo#1921733) Permission leak via embed or object elements * CVE-2024-10459 (bmo#1919087) Use-after-free in layout with accessibility * CVE-2024-10460 (bmo#1912537) Confusing display of origin for external protocol handler prompt * CVE-2024-10461 (bmo#1914521) XSS due to Content-Disposition being ignored in multipart/x-mixed-replace response * CVE-2024-10462 (bmo#1920423) Origin of permission prompt could be spoofed by long URL * CVE-2024-10463 (bmo#1920800) Cross origin video frame leak * CVE-2024-10464 (bmo#1913000) History interface could have been used to cause a Denial of Service condition in the browser * CVE-2024-10465 (bmo#1918853) Clipboard "paste" button persisted across tabs * CVE-2024-10466 (bmo#1924154) DOM push subscription message could hang Firefox * CVE-2024-10467 (bmo#1829029, bmo#1888538, bmo#1900394, bmo#1904059, bmo#1917742, bmo#1919809, bmo#1923706) Memory safety bugs fixed in Firefox 132, Thunderbird 132, Firefox ESR 128.4, and Thunderbird 128.4 - Rebase mozilla-rust-disable-future-incompat.patch- Firefox Extended Support Release 128.3.1 ESR MFSA 2024-51 (bsc#1231413) * CVE-2024-9680 (bmo#1923344) Use-after-free in Animation timeline- Firefox Extended Support Release 128.3.0 ESR * Fixed: Various security fixes and other quality improvements. MFSA 2024-47 (bsc#1230979) * CVE-2024-9392 (bmo#1899154, bmo#1905843) Compromised content process can bypass site isolation * CVE-2024-9393 (bmo#1918301) Cross-origin access to PDF contents through multipart responses * CVE-2024-9394 (bmo#1918874) Cross-origin access to JSON contents through multipart responses * CVE-2024-8900 (bmo#1872841) Clipboard write permission bypass * CVE-2024-9396 (bmo#1912471) Potential memory corruption may occur when cloning certain objects * CVE-2024-9397 (bmo#1916659) Potential directory upload bypass via clickjacking * CVE-2024-9398 (bmo#1881037) External protocol handlers could be enumerated via popups * CVE-2024-9399 (bmo#1907726) Specially crafted WebTransport requests could lead to denial of service * CVE-2024-9400 (bmo#1915249) Potential memory corruption during JIT compilation * CVE-2024-9401 (bmo#1872744, bmo#1897792, bmo#1911317, bmo#1916476) Memory safety bugs fixed in Firefox 131, Firefox ESR 115.16, Firefox ESR 128.3, Thunderbird 131, and Thunderbird 128.3 * CVE-2024-9402 (bmo#1872744, bmo#1897792, bmo#1911317, bmo#1913445, bmo#1914106, bmo#1914475, bmo#1914963, bmo#1915008, bmo#1916476) Memory safety bugs fixed in Firefox 131, Firefox ESR 128.3, Thunderbird 131, and Thunderbird 128.3- Firefox Extended Support Release 128.2.0 ESR * Fixed: Various security fixes and other quality improvements. MFSA 2024-40 (bsc#1229821) * CVE-2024-8385 (bmo#1911909) WASM type confusion involving ArrayTypes * CVE-2024-8381 (bmo#1912715) Type confusion when looking up a property name in a "with" block * CVE-2024-8382 (bmo#1906744) Internal event interfaces were exposed to web content when browser EventHandler listener callbacks ran * CVE-2024-8383 (bmo#1908496) Firefox did not ask before openings news: links in an external application * CVE-2024-8384 (bmo#1911288) Garbage collection could mis-color cross-compartment objects in OOM conditions * CVE-2024-8386 (bmo#1907032, bmo#1909163, bmo#1909529) SelectElements could be shown over another site if popups are allowed * CVE-2024-8387 (bmo#1857607, bmo#1911858, bmo#1914009) Memory safety bugs fixed in Firefox 130, Firefox ESR 128.2, and Thunderbird 128.2 - Removed upstreamed patches mozilla-bmo1907511.patch mozilla-bmo1898476.patch- Firefox Extended Support Release 128.1.0 ESR * Fixed: Various security fixes and other quality improvements. MFSA 2024-35 (bsc#1228648) * CVE-2024-7518 (bmo#1875354) Fullscreen notification dialog can be obscured by document content * CVE-2024-7519 (bmo#1902307) Out of bounds memory access in graphics shared memory handling * CVE-2024-7520 (bmo#1903041) Type confusion in WebAssembly * CVE-2024-7521 (bmo#1904644) Incomplete WebAssembly exception handing * CVE-2024-7522 (bmo#1906727) Out of bounds read in editor component * CVE-2024-7524 (bmo#1909241) CSP strict-dynamic bypass using web-compatibility shims * CVE-2024-7525 (bmo#1909298) Missing permission check when creating a StreamFilter * CVE-2024-7526 (bmo#1910306) Uninitialized memory used by WebGL * CVE-2024-7527 (bmo#1871303) Use-after-free in JavaScript garbage collection * CVE-2024-7528 (bmo#1895951) Use-after-free in IndexedDB * CVE-2024-7529 (bmo#1903187) Document content could partially obscure security prompts * CVE-2024-7531 (bmo#1905691) PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines- Firefox Extended Support Release 128.0esr ESR * ### General * Windows 7-8.1 and macOS 10.12-10.14 are no longer supported operating systems. * Firefox now supports automated translation of web content. Also, unlike cloud-based alternatives, translation is done locally so that the text being translated never leaves the machine. * The line breaking rules of web content now match the Unicode standard, improving cross-browser compatibility. Additionally, for East Asian and South East Asian end users, Firefox now supports proper language-aware word selection when double-clicking on text for languages including Chinese, Japanese, Burmese, Lao, Khmer, and Thai. * Video effects and background blur are now available to Firefox users on Google Meet. Firefox now displays images and descriptions for search suggestions when provided by the search engine. * It is now possible to copy and paste any file from the operating system into Firefox. * Having any issues with a website on Firefox, yet the site seems to be working as expected on another browser? You can now let us know via the Web Compatibility Reporting Tool! By filing a web compatibility issue, you’re directly helping us detect, target, and fix the most impacted sites to make your browsing experience on Firefox smoother. * Firefox now prompts users in the US and Canada to save their addresses upon submitting an address form, allowing Firefox to autofill stored address information in the future. * Support for credit card autofill has been extended to users running Firefox in the IT, ES, AT, BE, and PL locales. * Recently closed tabs now persist between sessions that don't have automatic session restore enabled. Manually restoring a previous session will continue to reopen any previously open tabs or windows. * When migrating data from Chrome, Firefox now offers the ability to import certain extensions as well. * The Screenshots feature in Firefox has been updated. It now supports taking screenshots of file types like SVG, XML, and more as well as various about: pages within Firefox. The screenshot tool was also made more accessible to everyone by implementing new keyboard shortcuts and adding theme compatibility and High Contrast Mode (HCM) support. And finally, performance for capturing large screenshots has been improved. * ### PDF Viewer * The Firefox PDF viewer has expanded PDF editing capabilities: * Text highlighting is now supported. * Editing already-existing text annotations is now supported. * Images and alt text can be added in addition to text and drawings. * A floating button is now included to simplify deleting drawings, text, and images added in PDFs. * Caret browsing mode now also works in the PDF viewer. (Learn more) * ### Firefox View * Firefox View includes more content. You can now see all open tabs from all windows. If you sync open tabs, you’ll see all tabs from other devices. Browsing history is now listed and you can sort by date or by site. As before, recently closed tabs are also listed on Firefox View. To access Firefox View, select the file folder icon at the top left of your tab strip. * We’ve integrated search into Firefox View. You can now search through all of the tabs on each of the section subpages - Recent Browsing, Open Tabs, Recently Closed Tabs, Tabs from other devices, or History. * In Firefox View, open tabs can now be sorted by either recent activity or tab order. Recent activity is the default setting. * Firefox View now displays pinned tabs in the Open tabs section. Tab indicators have also been added to Open tabs, so users can do things like see which tabs are playing media and quickly mute or unmute across windows. Indicators were also added for bookmarks, tabs with notifications, and more! * It is now possible to close all duplicate tabs in a window with the `Close duplicate tabs` command available from the `List all tabs` widget in the tab bar or a tab context menu. * ### Security & Privacy * For added protection on macOS and Windows, a device sign in (e.g. operating system password, fingerprint, face or voice login if enabled) can be required when accessing and filling stored passwords in the Firefox Password Manager about:logins page. * Firefox now supports creating and using passkeys stored in the iCloud Keychain on macOS. * Firefox now imports user-added TLS trust anchors (e.g., certificates) from the operating system root store. This will be enabled by default on Windows, macOS, and Android, and if needed, can be turned off in settings (Settings → Privacy & Security → Certificates). * The Storage Access API web standard was updated to improve security while mitigating website breakages and further enabling the phase out of third-party cookies in Firefox. * Encrypted Client Hello (ECH) is now available to Firefox users, delivering a more private browsing experience. ECH extends the encryption used in TLS connections to cover more of the handshake and better protect sensitive fields. Read more about the launch of ECH on Mozilla Distilled. * Firefox supports a new “Copy Link Without Site Tracking” feature in the context menu which ensures that copied links no longer contain tracking information. * Firefox now supports a setting (in Preferences → Privacy & Security) to enable Global Privacy Control. With this opt-in feature, Firefox informs the websites that the user doesn’t want their data to be shared or sold. This feature is enabled in private browsing mode by default. * Firefox now more proactively blocks downloads from URLs that are considered to be potentially untrustworthy. * ### Anti-Fingerprinting * Web Audio in Firefox now uses the FDLIBM math library on all systems to improve anonymity with Fingerprint Protection. * As part of Total Cookie Protection, Firefox now supports the partitioning of Blob URLs, this mitigates a potential tracking vector that third-party agents could use to track an individual. * To mitigate font fingerprinting, the visibility of fonts to websites has been restricted to system fonts and language pack fonts when in Private Browsing Mode or with Enhanced Tracking Protection set to strict mode. * Firefox’s private windows and ETP-Strict privacy configuration now enhance the Canvas APIs with Fingerprinting Protection. * To reduce user fingerprinting information and the risk of some website compatibility issues, the CPU architecture for 32-bit x86 Linux will now be reported as x86_64 in Firefox's User-Agent string and `navigator.platform` and `navigator.oscpu` Web APIs. * ### Windows * Firefox can now be set to automatically launch whenever the computer starts up. (Learn more) * The background updater now updates properly when there are multiple user accounts on a system. * Firefox now populates the Windows taskbar jump list more efficiently, which should allow for a smoother overall browsing experience. * ### macOS * Firefox now supports Voice Control commands on macOS systems. * Links and other focusable elements are now tab-navigable by default on macOS, instead of following macOS' "Keyboard navigation" setting. This is a more accessible default and matches the default in all other platforms. A checkbox in the settings page still allows users to restore the old behavior. * Firefox on Mac now uses the macOS fullscreen API for all types of fullscreen windows. This should better match the expected macOS user experience for fullscreen spaces, menubar and the Dock. * ### Linux * Firefox now defaults to the Wayland compositor when available instead of XWayland. This brings support for touchpad & touchscreen gestures, swipe-to-nav, per-monitor DPI settings, better graphics performance, and more. * Firefox now ships with a new .deb package for Linux users on Ubuntu, Debian, and Linux Mint. * ### Video Playback * Enabled AV1 hardware decode acceleration on macOS for M3 Macs. * Firefox now supports the AV1 codec for Encrypted Media Extensions (EME), enabling higher-quality playback from video streaming providers. * NVIDIA RTX Video Super Resolution (“VSR”) is now available in Firefox. RTX VSR enhances and sharpens lower resolution video when upscaled to higher resolutions and also removes blocky artifacts commonly visible on low bitrate streamed video. VSR requires at least a 20-series or higher NVIDIA RTX GPU, Microsoft Windows 10/11 64-bit, and NVIDIA driver version R530 or higher. The feature can be enabled in the NVIDIA control panel. * NVIDIA RTX Video HDR is now available in Firefox. RTX Video HDR automatically converts SDR video to vibrant HDR10 in real time, letting you enjoy video with improved clarity on your HDR10 panel. It requires at least a 20-series NVIDIA RTX GPU, Microsoft Windows 10/11 64-bit, and NVIDIA driver version 550 or higher. The feature can be enabled in the NVIDIA control panel. * Developer: * Firefox now supports DNS prefetching for HTTPS documents via the `rel="dns-prefetch"` link hint. This standard allows web developers to specify domain names for important assets that should be resolved preemptively. * Firefox will now automatically try to upgrade ,