Google Chrome 17.0.963.83

Naviga SWZ: Home Page » News
News del 22 Marzo 12 Autore: Gianplugged - 1637 letture
Google Chrome 17.0.963.83

Note di rilascio:

The Chrome Stable channel has been updated to 17.0.963.83 on Windows, Mac, Linux and Chrome Frame.  This release fixes issues with Flash games, along with the security fixes listed below.

Security fixes and rewards:

Please see the Chromium security page for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix.

Some of the items listed below represent the start of hardening measures based on study of the exploits submitted to the Pwnium competition. 

[$1000] [113902] High CVE-2011-3050: Use-after-free with first-letter handling. Credit to miaubiz.

[116162] High CVE-2011-3045: libpng integer issue from upstream. Credit to Glenn Randers-Pehrson of the libpng project.

[$1000] [116461] High CVE-2011-3051: Use-after-free in CSS cross-fade handling. Credit to Arthur Gerkis.

[116637] High CVE-2011-3052: Memory corruption in WebGL canvas handling. Credit to Ben Vanik of Google.

[$1000] [116746] High CVE-2011-3053: Use-after-free in block splitting. Credit to miaubiz.

[117418] Low CVE-2011-3054: Apply additional isolations to webui privileges. Credit to Sergey Glazunov.

[117736] Low CVE-2011-3055: Prompt in the browser native UI for unpacked extension installation. Credit to PinkiePie.

[$2000] [117550] High CVE-2011-3056: Cross-origin violation with “magic iframe”. Credit to Sergey Glazunov.

[$500] [117794] Medium CVE-2011-3057: Invalid read in v8. Credit to Christian Holler.

Also, this single low severity issue was fixed in a previous patch but we forgot to issue proper credit:


  • [108648] Low CVE-2011-3049: Extension web request API can interfere with system requests. Credit to Michael Gundlach.


  • More detailed updates are available on the Chrome Blog.  Full details about what changes are in this release are available in the SVNrevisionlog.  Interested in hopping on the stable channel?  Find out how.  If you find a new issue, please let us know by filing a bug.

    Inserisci un commento sul forum Commenta la News sul Forum

    Voto:

    Categoria: P2P e Web

    Licenza: Open source

    OS: Windows, Linux, OS X

    La Community di SWZone.it

    La community con le risposte che cerchi ! Partecipa é gratis !
    Iscrizione ForumIscriviti al Forum

    Newsletter

    Vuoi ricevere tutti gli aggiornamenti di SWZone direttamente via mail ?
    Iscrizione NewsletterIscriviti alla Newsletter

    Carico il Player Video

    News Collegate