Google Chrome 54.0.2840.59

Google Chrome is de browser van Google die in 2008 geïntroduceerd is. Chrome behoort inmiddels met Internet Explorer tot de meestgebruikte desktop browsers en is ook op Android toestellen standaard aanwezig.

Google Chrome 54.0.2840.59 is gisteren verschenen. Dit is in de eerste plaats een beveiligingsupdate die 21 lekken dichtplakt in Googles browser en een nieuwe versie van de ingebouwde Flash-plugin meelevert -  waarin eveneens 12 lekken gerepareerd worden.

De versiesprong van 53 naar 54 brengt voor gebruikers weinig nieuwe functionaliteit maar onder de motorkap en voor webontwikkelaars zijn weer de nodige verbeteringen en vernieuwingen doorgevoerd.
 
Google Chrome is beschikbaar voor Windows, Mac OS X en Linux. De browser wordt automatisch bijgewerkt naar de nieuwste versie, daar hoef je zelf niks voor te doen. Je kunt controleren welke versie je hebt onder het menu Over Google Chrome. Er zijn ook versies van Chrome voor iOS en Android.

Release notes:
The Chrome team is delighted to announce the promotion of Chrome 54 to the stable channel - 54.0.2840.59 for Windows, Mac, and Linux. This will roll out over the coming days/weeks.
Chrome 54.0.2840.59 contains a number of fixes and improvements -- a list of changes is available in the log.  Watch out for upcoming Chrome and Chromium blog posts about new features and big efforts delivered in 54.
Security Fixes and Rewards
Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.
This update includes 21 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information.
[$7500][645211] High CVE-2016-5181: Universal XSS in Blink. Credit to Anonymous
[$5500][638615] High CVE-2016-5182: Heap overflow in Blink. Credit to Giwan Go of STEALIEN
[$3000][645122] High CVE-2016-5183: Use after free in PDFium. Credit to Anonymous
[$3000][630654] High CVE-2016-5184: Use after free in PDFium. Credit to Anonymous
[$3000][621360] High CVE-2016-5185: Use after free in Blink. Credit to cloudfuzzer
[$1000][639702] High CVE-2016-5187: URL spoofing. Credit to Luan Herrera
[$3133.7][565760] Medium CVE-2016-5188: UI spoofing. Credit to Luan Herrera
[$1000][633885] Medium CVE-2016-5192: Cross-origin bypass in Blink. Credit to haojunhou@gmail.com
[$500][646278] Medium CVE-2016-5189: URL spoofing. Credit to xisigr of Tencent's Xuanwu Lab
[$500][644963] Medium CVE-2016-5186: Out of bounds read in DevTools. Credit to Abdulrahman Alqabandi (@qab)
[$500][639126] Medium CVE-2016-5191: Universal XSS in Bookmarks. Credit to Gareth Hughes
[$N/A][642067] Medium CVE-2016-5190: Use after free in Internals. Credit to Atte Kettunen of OUSPG
[$500][639658] Low CVE-2016-5193: Scheme bypass. Credit to Yuyang ZHOU (martinzhou96)
We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.
As usual, our ongoing internal security work was responsible for a wide range of fixes:[654782] CVE-2016-5194: Various fixes from internal audits, fuzzing and other initiatives

Reageren

Plain text

  • Toegelaten HTML-tags: <em> <strong> <br> <p>
  • Adressen van webpagina's en e-mailadressen worden automatisch naar links omgezet.
  • Regels en paragrafen worden automatisch gesplitst.
  • <img> elements are lazy-loaded.
Verplichte controlevraag
Om spam tegen te houden
zwitserla_d