msgbartop
All about Google Chrome & Google Chrome OS
msgbarbottom

11 Nov 11 Chrome 15 update closes holes, updates Flash






Google has released version 15.0.874.120 of Chrome. The maintenance and security update to the WebKit-based browser upgrades the V8 JavaScript engine to version 3.5.10.23, addresses several vulnerabilities, and includes the recent Flash Player 11.1 release, which also closes critical security holes.

The Stable channel update fixes a total of five “high-risk” bugs: a heap overflow in the Ogg Vorbis decoder, a double free issue in the Theora decoder and a memory corruption regression in VP8 decoding, as well as a use-after-free error and a buffer overflow in shader variable mapping. Two medium-risk out of bounds reads in MKV and Ogg vorbis media handlers, and a low-risk issue that caused JRE7 to fail to ask for permission to run applets have also been fixed. Further details of the vulnerabilities are being withheld until “a majority of users are up-to-date with the fix”.

More information about the update can be found in a post on the Google Chrome Releases blog. Chrome 15.0.874.120 for Windows, Mac OS X, Linux and Chrome Frame is available to download from google.com/chrome. Users who currently have Chrome installed can use the built-in update function.

See also:

  • Chrome 16 enters beta, adds support for syncing multiple accounts, a report from The H.
  • Chrome 15 brings redesigned New Tab page, closes holes, a report from The H.

(crve)

Article source: http://www.h-online.com/security/news/item/Chrome-15-update-closes-holes-updates-Flash-1377300.html

Tags: , , ,

Comments are closed.