Google Chrome 13.0.782.215 has been released to the Stable channel for Windows, Mac OS, Linux, and Chrome Frame. This vesion releases to address 11 vulnerabilities including memory corruption in vertex handing. The full list of changes that are in this release listed in What's new in Google Chrome 13.0.782.215 Stable section.
Overview
Google Chrome is a browser that combines a minimal design with sophisticated technology to make the web faster, safer, and easier. It has one box for everything: Type in the address bar and get suggestions for both search and web pages. Will give you thumbnails of your top sites, access your favorite pages instantly with lightning speed from any new tab. Desktop shortcuts allow you to launch your favorite Web apps straight from your desktop.
Download Google Chrome
To install Google Chrome 13.0.782.215 Stable please visit http://www.google.com/chrome website.
What's new in Google Chrome 13.0.782.215 Stable (August 22, 2011)
This release contains the following security fixes.
Security fixes and rewards:
- [Windows only] [72492] Medium CVE-2011-2822: URL parsing confusion on the command line. Credit to Vladimir Vorontsov, ONsec company. [$1000] (Medium)
- [82552] High CVE-2011-2823: Use-after-free in line box handling. Credit to Google Chrome Security Team (SkyLined) and independent later discovery by miaubiz. (High)
- [88216] High CVE-2011-2824: Use-after-free with counter nodes. Credit to miaubiz. [$1000] (High)
- [88670] High CVE-2011-2825: Use-after-free with custom fonts. Credit to wushi of team509 reported through ZDI (ZDI-CAN-1283), plus indepdendent later discovery by miaubiz. (High)
- [89402] High CVE-2011-2821: Double free in libxml XPath handling. Credit to Yang Dingning from NCNIPC, Graduate University of Chinese Academy of Sciences. [$1000] (High)
- [87453] High CVE-2011-2826: Cross-origin violation with empty origins. Credit to Sergey Glazunov. [$1000] (High)
- [Windows only] [89836] Critical CVE-2011-2806: Memory corruption in vertex handing. Credit to Michael Braithwaite of Turbulenz Limited. [$1337] (Critical)
- 90668] High CVE-2011-2827: Use-after-free in text searching. Credit to miaubiz. [$1000] (High)
- [91517] High CVE-2011-2828: Out-of-bounds write in v8. Credit to Google Chrome Security Team (SkyLined). [$1000] (High)
- [32-bit only] [91598] High CVE-2011-2829: Integer overflow in uniform arrays. Credit to Sergey Glazunov. [$1000] (High)
- [Linux only] [91665] High CVE-2011-2839: Buggy memset() in PDF. Credit to Aki Helin of OUSPG. [$1000] (High)
Source: Google Chrome Releases
No comments:
Post a Comment