Microsoft Edge 131: A Comprehensive Update for Users

In an important development, Microsoft has rolled out a significant update for its Edge browser within the Stable Channel. The newly launched version 131 brings a host of enhancements, including minor improvements, feature upgrades, policy adjustments, and essential security patches.

Highlights of Microsoft Edge 131 Update

Below is an overview of the key changes introduced in Microsoft Edge 131:

1. Changes to the Beforeunload Dialog

The mechanics of the beforeunload event have undergone a transformation. Users will now find that using event.preventDefault in a beforeunload handler does not stop the display of the cancel dialog. To suppress this dialog, developers must implement event.returnValue = '' within the event handler. Notably, the BeforeunloadEventCancelByPreventDefaultEnabled policy is deprecated and ineffective post-version 130.

2. Standardization of Kyber Algorithm

The Kyber algorithm has been standardized and renamed to Module Lattice Key Encapsulation Mechanism (ML-KEM). This change, part of the BoringSSL cryptography library, allows for its broader application in services reliant on this library. However, these adjustments render the previous iteration of Kyber incompatible, leading to the following modifications in Edge:

• Transition from Kyber to ML-KEM support.
• Implementation of key share prediction for hybrid ML-KEM (codepoint 0x11EC).
• Application of the PostQuantumKeyAgreementEnabled policy to both Kyber and ML-KEM, with the latter scheduled for removal in Edge version 141.
• No further support for hybrid Kyber (codepoint 0x6399).

3. Introduction of New Sidebar Policy

A new policy, the EdgeSidebarAppUrlHostAllowList, now allows administrators to create a list of URL patterns for sites exempted from restrictions imposed by the EdgeSidebarAppUrlHostBlockList. This means that even if a site is included in the block list, it can still operate within the sidebar if listed in the allow list. For further details, refer to Managing the Sidebar in Microsoft Edge.

Additional Improvements and Security Updates

Version 131 encompasses all fixes and enhancements from the previous Dev Channel updates, which include:

• Dev Channel update to 131.0.2863.0
• Dev Channel update to 131.0.2875.0
• Dev Channel update to 131.0.2889.0
• Dev Channel update to 131.0.2903.5

Security Vulnerabilities Addressed

This update also resolves various security vulnerabilities, including one specific to Edge (CVE-2024-49025) and eight that are related to Chromium. For a comprehensive insight into the security fixes, visit the Security Update Guide.

For an in-depth exploration of the improvements and features in Microsoft Edge 131, you can check the detailed release notes.

Source & Images