Firefox 136, 128.8 ESR, and 115.21 ESR fixes 15 security vulnerabilities, comes with vertical tabs, and more [Changelog]

Firefox 136, 128.8 ESR, and 115.21 ESR fixes 15 security vulnerabilities, comes with vertical tabs, and more [Changelog]

It's Patch Tuesday again for Firefox, and Mozilla has released updates for all three currently supported versions. These include Firefox 136.0, which includes new features and security fixes, as well as Firefox 128.8 ESR and 115.21 ESR.

A total of 15 security vulnerabilities were fixed. Eight of these vulnerabilities were rated "high." These include fixes affecting Thunderbird. Version 136 (officially final and 128.8.0) should be released today.

The update itself will be distributed via the browser's update function on Tuesday afternoon.  [Update]:  Has now been released. There have been announcements about Firefox in recent days. One was that Firefox 115 ESR will be supported until September 2025, and another was that Manifest V2 will be maintained alongside Manifest V3 for extensions. But no date or how long is specified. Back to the update.

New features and improvements in Firefox 136

• You can now enable the updated Firefox sidebar under Settings > General > Browser Layout to quickly access multiple tools with one click without leaving your main view. Sidebar tools include an AI chatbot of your choice, bookmarks, history, and tabs from devices you sync with your Mozilla account.

• Got a lot of tabs open? Try our new vertical tabs layout to quickly browse your tab list. With vertical tabs, your open and pinned tabs appear in the sidebar instead of at the top of the browser. To enable vertical tabs, right-click the toolbar at the top of the browser and select Turn on vertical tabs. If you have the updated sidebar enabled, you can also go to Customize Sidebar and turn on Vertical Tabs. Early testers report feeling more organized after a few days of using vertical tabs.

• The Clear Browsing Data and Cookies dialog now allows you to delete saved data from forms separately from your browsing history.
• Smartblock Embeds allows users to selectively unblock certain social media embeds that are blocked in the Strict and Private Browsing ETP modes. Currently, support is limited to a few embed types, with more to be added in future updates.
• Firefox now updates page loading to HTTPS by default and automatically falls back to HTTP if the secure connection fails. This behavior is known as [HTTPS-First].
• On macOS, some background tabs are moved to low-power cores to reduce energy consumption.
• Hardware-accelerated playback of HEVC video content is now supported on macOS.
• Hardware video decoding is now enabled for AMD GPUs on Linux.
• On Linux, Firefox is now available on ARM64 (AArch64), with installation options via APT and tarballs. Flatpak support will follow soon.
• Automatic address fill has been enabled for users in the UK.
• Changes
• For new tabs, the Save to Pocket action has been moved from a button to the context menu, along with other actions such as Bookmark.
• The macOS DMG installation packages now use LZMA for compression, which reduces download size and installation time.
• Due to recent changes in macOS Sequoia, the keyboard shortcut for completing search strings to .com addresses has been changed from Ctrl+Enter to Cmd+Enter.
• corrections
• Firefox now uses the PNG format when copying images out of Firefox, preserving transparency.
• Security fixes in Firefox 136, 128.8 and 115.21
• Additional changes for developers were included.

Information and download:

• Security fixes: mozilla.org/security/advisories
• mozilla.org/firefox/136.0/releasenotes
• mozilla.org/firefox/releases/136.0
• mozilla.org/firefox/128.8.0/releasenotes
• mozilla.org/firefox/releases/128.8.0esr
• mozilla.org/firefox/115.21.0/releasenotes
• mozilla.org/firefox/releases/115.21.0esr