Chrome Shuts Security Holes

Wednesday, September 5, 2012 @ 10:09 AM gHale

Google’s Chrome web browser is now good to go after security professionals plugged three high-severity holes.

Version 21.0.1180.89 of Chrome for Windows, Mac OS X and Linux addresses nine vulnerabilities in the web browser, and fixes a number of non-security issues with Flash, developer tools and gradient boxes.

RELATED STORIES
Cross-Platform Trojan Steals Passwords
Virus Pieces Together Inside System
Crisis Malware Goes Virtual
Popular Malware for July

The high severity vulnerabilities include two incidents of bad casting, when handling XSL transforms and run-ins, and a stale buffer appearing when loading URLs.

Additionally, the update fixes three medium-risk and three low-risk issues. In total, Google paid security researchers $3,500 for discovering and reporting these holes as part of its Chromium Security Vulnerability Rewards program.

As usual, further details about the security holes are not immediately available, in order to allow affected users to update to the new version.

Chrome 21.0.1180.89 is available from google.com/chrome for Windows, Mac OS X and Linux; existing users can upgrade using the built-in update function. Chrome comes from Chromium, the open source browser project run by Google.



Leave a Reply

You must be logged in to post a comment.