Members
  • Total Members: 14197
  • Latest: Levine
Stats
  • Total Posts: 43438
  • Total Topics: 16532
  • Online today: 3056
  • Online ever: 51419
  • (01. January 2010., 10:27:49)
Users Online
Users: 3
Guests: 2973
Total: 2976









Author Topic: 32 vulnerabilities patched in Chrome 14  (Read 4046 times)

0 Members and 1 Guest are viewing this topic.

Samker

  • SCF Administrator
  • *****
  • Posts: 7529
  • KARMA: 322
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum
32 vulnerabilities patched in Chrome 14
« on: 19. September 2011., 17:50:21 »


Google last week patched 32 vulnerabilities in Chrome, paying more than $14,000 in bug bounties as it also upgraded the stable edition of the browser to version 14.

The company called out a pair of developer-oriented additions to Chrome 14 and noted new support for Mac OS X 10.7, aka Lion, including full-screen mode and vanishing scrollbars.

Google last upgraded Chrome's stable build in early August. Google produces an update about every six weeks, a practice that rival Mozilla also adopted with the last June.

Fifteen of the 32 vulnerabilities were rated "high," the second-most-serious ranking in Google's four-step scoring system, while 10 were pegged "medium" and the remaining seven were marked "low."

None of the flaws were ranked "critical," the category usually reserved for bugs that may allow an attacker to escape Chrome's anti-exploit sandbox. Google has patched several critical bugs this year, the last time in April.

Six of the vulnerabilities rated high were identified as "use-after-free" bugs, a type of memory management flaw that can be exploited to inject attack code, while seven of the bugs ranked medium were "out-of-bounds" flaws, including a pair linked to foreign language character sets used in Cambodia and Tibet.

Google paid $14,337 in bounties to nine researchers, including $3,500 to "miaubiz" and $2,337 to Sergey Glazunov, another regular bug finder.

The company's security team also credited others, including researchers who work for Microsoft and Apple, for "working with us in the development cycle and preventing bugs from ever reaching the stable channel." Some of those researchers were also awarded bounties, but Google did not spell out the amounts of those awards.

As per its practice, Google barred access to the Chrome bug-tracking database for the 32 vulnerabilities to prevent outsiders from obtaining details on the flaws. The company only opens the database after users have had time to update the browser.

Google also added a pair of developer-only features to Chrome 14, including support for the Web Audio API (application programming interface) and for "native client," an open-source technology that runs software written in C and C++ within Chrome's security sandbox.

The Mac version of Chrome 14 also supports Lion's new approach to scrollbars, which appear only when a user is actively scrolling through the browser window. Chrome 14 also now runs in Lion's full-screen mode, triggered via the icon in the upper right of the browser or by pressing Ctrl-Command-F.

But Chrome's full-screen support isn't polished or finished; the browser won't return to its windowed view with a press of the Escape key, as do Apple's home-grown applications in Lion.

Chrome 14 can be downloaded for Windows, Mac OS X and Linux from Google's Web site: http://www.google.com/chrome/

*Users already running the browser will be updated automatically.


(PCW)

Samker's Computer Forum - SCforum.info

32 vulnerabilities patched in Chrome 14
« on: 19. September 2011., 17:50:21 »

Fintech

  • SCF VIP Member
  • *****
  • Posts: 367
  • KARMA: 49
  • Gender: Male
Re: 32 vulnerabilities patched in Chrome 14
« Reply #1 on: 19. September 2011., 22:48:44 »
It is installed, but I do not like to use it! I prefer to use Firefox! :bih:

Samker

  • SCF Administrator
  • *****
  • Posts: 7529
  • KARMA: 322
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum
Re: 32 vulnerabilities patched in Chrome 14
« Reply #2 on: 20. September 2011., 05:47:02 »
It is installed, but I do not like to use it! I prefer to use Firefox! :bih:

Just like me...  ;D




vishwanath99

  • SCF Member
  • **
  • Posts: 61
  • KARMA: 6
  • Gender: Male
Re: 32 vulnerabilities patched in Chrome 14
« Reply #3 on: 20. September 2011., 07:20:45 »
BUT I LIKE CHROME..
more faster then Firefox

Samker

  • SCF Administrator
  • *****
  • Posts: 7529
  • KARMA: 322
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum
Re: 32 vulnerabilities patched in Chrome 14
« Reply #4 on: 20. September 2011., 09:21:24 »
...
more faster then Firefox

Yes it's, but it doesn't have all add-ons which I use in FF:thumbsdown:




Samker's Computer Forum - SCforum.info

Re: 32 vulnerabilities patched in Chrome 14
« Reply #4 on: 20. September 2011., 09:21:24 »

Fintech

  • SCF VIP Member
  • *****
  • Posts: 367
  • KARMA: 49
  • Gender: Male
Re: 32 vulnerabilities patched in Chrome 14
« Reply #5 on: 20. September 2011., 19:05:24 »
I think that..Opera is even little bit faster but Firefox is the Best ;D

Samker's Computer Forum - SCforum.info

Re: 32 vulnerabilities patched in Chrome 14
« Reply #5 on: 20. September 2011., 19:05:24 »

 

With Quick-Reply you can write a post when viewing a topic without loading a new page. You can still use bulletin board code and smileys as you would in a normal post.

Name: Email:
Verification:
Type the letters shown in the picture
Listen to the letters / Request another image
Type the letters shown in the picture:
Second Anti-Bot trap, type or simply copy-paste below (only the red letters):www.codekids.ba:

Enter your email address to receive daily email with 'SCforum.info - Samker's Computer Forum' newest content:

Kursevi programiranja za ucenike u Sarajevu

Terms of Use | Privacy Policy | Advertising
TinyPortal 2.3.1 © 2005-2023