Friday, November 6, 2009

Google Chrome 3.0.195.32

(2009.11.05)

The stable channel has been updated to 3.0.195.32, and includes the following security and stability fixes:

Stability Fixes
* Resolved a history issue that affected going back from queries in Google Maps. (Issue: 21353)
* Fixed issue with Adobe Acrobat Reader 9.2, where no content would be displayed. (Issue: 24883)
* Fixed an infinite loop in AAC decoding. (Webkit Issue: 27239)
* Fixed a top crasher. (Issue: 22205)
* Fix issues where setInterval sometimes eats 100% CPU. (Issue: 25892)

Security Fixes:
* CVE-2009-XXXX User not warned for some file types that can execute JavaScript

The user was not warned about certain possibly dangerous file types such as SVG, MHT and XML files. In some browsers, JavaScript can execute within these types of files. Because the JavaScript runs in the local context, it may be able to access local resources.

Severity: Medium

Mitigations:
* A victim would need to visit a page under an attacker's control.
* The victim would furthermore need to open a malicious file.

------------------------------------------------------

* CVE-2009-XXXX Possible memory corruption in the Gears plugin

A malicious site could use the Gears SQL API to put SQL metadata into a bad state, which could cause a subsequent memory corruption. This may lead to a Gears plugin crash or possibly arbitrary code execution.

Severity: High

Mitigations:
* A victim would need to visit a page under an attacker's control.
* The victim would furthermore need to "click-through" the Gears dialog confirming that they trust the attacker's evil page.

-DOWNLOAD-
Google Chrome 3.0.195.32

No comments:

Post a Comment

Related Posts with Thumbnails