Chrome 13 Patches Security Holes

Wednesday, August 24, 2011 @ 12:08 PM gHale

The new maintenance and security update to Chrome 13 addresses 11 vulnerabilities.

Google released version 13.0.782.215 of Chrome which corrects a Windows-only memory corruption issue, rated as ‘critical’ by Google, in vertex handing. Other holes closed include nine ‘high-risk’ bugs, ranging from multiple use-after-free errors, a cross-origin violation, an integer overflow in uniform arrays and an out-of-bounds write problem in the V8 JavaScript engine, to memory corruption bugs and problems with the built-in PDF viewer. The search engine giant also fixed a medium-risk bug related to URL parsing on Windows systems.

RELATED STORIES
Websites Hit with Injection Attack
Malware Feeds Off Slow Patching
Sites Face New ZeuS Attack
Hackers Banned; Shift to Plan B

As part of its Chromium Security Reward program, Google paid out $8,837 to security researchers for reporting these vulnerabilities. Google officials are withholding further details of the vulnerabilities until “a majority of users are up-to-date with the fix.”

More information about this security update, including a link to the SVN revision log, is on the Google Chrome Releases blog.

Click here to download Chrome 13.0.782.215 for Windows, Mac OS X and Linux.

Users who currently have Chrome installed can use the built-in update function by clicking Tools, selecting About Google Chrome and clicking the Update button.



Leave a Reply

You must be logged in to post a comment.