Chrome 29 Fixes 25 Bugs

Thursday, August 22, 2013 @ 03:08 PM gHale

Google Chrome’s newest version comes complete with 25 security fixes, including patches for a number of high-severity vulnerabilities. Chrome 29 also includes a number of performance enhancements.

Google sends out new versions of its browser every few weeks, and sometimes will only have a handful of security fixes. Chrome 29, though, is different as it contains a large number of fixes. Three of the fixes in Chrome 29 are for use-after-free vulnerabilities, each of which earned the finder a $1,000 bug bounty.

Mozilla Fixes Firefox Security Bugs
Apple Patches OS X, Safari Bugs
Security Fixes for Chrome 27
Google Fixes Holes in Chrome 27

The list of bugs fixed in Chrome 29 includes:
• [181617] High CVE-2013-2900: Incomplete path sanitization in file handling. Credit to Krystian Bigaj.
• [254159] Low CVE-2013-2905: Information leak via overly broad permissions on shared memory files. Credit to Christian Jaeger.
• [257363] High CVE-2013-2901: Integer overflow in ANGLE. Credit to Alex Chapman.
• [260105] High CVE-2013-2902: Use after free in XSLT. Credit to cloudfuzzer.
• [260156] High CVE-2013-2903: Use after free in media element. Credit to cloudfuzzer.
• [260428] High CVE-2013-2904: Use after free in document parsing. Credit to cloudfuzzer.

Chrome users should update their browsers as soon as possible to protect against attacks using these vulnerabilities.

Leave a Reply

You must be logged in to post a comment.