Chrome 16 Closes Security Holes

Wednesday, January 25, 2012 @ 01:01 PM gHale


In a move to fix four high severity vulnerabilities, Google released version 16.0.912.77 of Chrome which closes holes in the WebKit-based web browser.

These include use-after-free holes in DOM selections and DOM handling, an uninitialized value in the Skia 2D graphics library and a buffer overflow in tree builder. The release also fixed four bugs detected using AddressSanitizer.

RELATED STORIES
Hackers Prove Website Weaknesses
OpenSSL Patches Bug Offered in Fix
Google Looks at HTTPS Security
Google Fixes Chrome Hole, Again

The developers corrected a critical use-after-free issue in Safe Browsing navigation in version 16.0.912.75, but “accidentally excluded from the release notes.” They are withholding additional details of the vulnerability until “a majority of users are up-to-date with the fix.”

Click here for more details about the Stable channel update.

Chrome 16.0.912.77 is available to download for Windows, Mac OS X and Linux from google.com/chrome. Those who currently have Chrome installed can use the built-in update function.



Leave a Reply

You must be logged in to post a comment.