Microsoft Edge 101 fixes 25 security issues
Microsoft Edge 101 stable is now available. The new version of Microsoft’s cross-platform web browser fixes 25 security issues and includes several non-security improvements.
Desktop users can select Menu > Help & Feedback > About Microsoft Edge, or load edge://settings/help directly into the browser address bar, to view the current browser version. Edge runs an update check when the page is opened, and the new update should be downloaded and installed at this point.
Interesting too: Microsoft is currently testing a browser proxy in Edge.
Microsoft Edge 101
Microsoft Edge 101.0.1210.32 fixes 25 different security issues in the browser. The majority deal with issues in Chromium, the kernel that Microsoft’s browser shares with browsers such as Google Chrome, Brave, Vivaldi, or Opera.
Two vulnerabilities, CVE-2022-29146 and CVE-2022-29147, are specific to Edge. The former has a moderate severity rating and successful exploitation could lead to a browser sandbox escape. The second has a low severity index and could lead to an impersonation attack. Both vulnerabilities require “user interaction or prerequisites”, which is why Microsoft has reduced the exploit rate.
The official release notes highlight non-security related changes and improvements in Edge 101. Here is a brief overview of the significant changes. Please note that all may not yet be available on all systems:
- An Apps icon can be added to the favorites bar to launch Progressive Web Apps directly from the toolbar.
- An option to clear stored certificates to make the certificate picker for a site reappear is now supported.
- The ability to configure shared cookies between Microsoft Edge and Internet Explorer is now available in the list of corporate sites.
- The ControlDefaultStateOfAllowExtensionFromOtherStoresSettingEnabled policy supports setting a default state for the “allow extensions from other stores” preference.
- The EdgeDefaultProfileEnabled policy supports setting a specific profile as the default profile when the browser is open.
Several strategies have been added in Edge 101:
- ConfigureKeyboardShortcuts – Configure list of commands to disable keyboard shortcuts
- ControlDefaultStateOfAllowExtensionFromOtherStoresSettingEnabled – Configure default state of Allow extensions from other stores setting
- EdgeAssetDeliveryServiceEnabled – Allow features to download assets from Asset Delivery Service
- EdgeDefaultProfileEnabled – Default profile setting enabled
- InternetExplorerModeEnableSavePageAs – Allow saving page as in Internet Explorer mode
- KioskSwipeGesturesEnabled – Microsoft Edge kiosk swipe gestures enabled
- MicrosoftOfficeMenuEnabled – Allow users to access the Microsoft Office menu
- SiteSafetyServicesEnabled – Allow users to configure site safety services
Microsoft Edge 101 is primarily a security update that fixes 25 different security issues in the browser. The update will roll out automatically to most systems in the coming days and weeks, but admins can speed up the process using the method described above.
Now you: Do you use Microsoft Edge?