• Announcements

    • Budfred

      IE 11 copy/paste problem

      It has come to our attention that people using Internet Explorer 11 (IE 11) are having trouble with copy/paste to the forum. If you encounter this problem, using a different browser like Firefox or Chrome seems to get around the problem. We do not know what the problem is, but it seems to be specific to IE 11 and we are hopeful that Microsoft will eventually fix it.
AplusWebMaster

Google Chrome updated

190 posts in this topic

FYI...

 

Google Chrome multiple vulns - update available

- http://secunia.com/advisories/36417/2/

Release Date: 2009-08-26

Critical: Highly critical

Impact: Spoofing, Exposure of sensitive information, System access

Where: From remote

Solution Status: Vendor Patch

Software: Google Chrome 2.x ...

Solution: Update to version 2.0.172.43.

Original Advisory:

http://googlechromereleases.blogspot.com/2...rity-fixes.html

 

http://web.nvd.nist.gov/view/vuln/detail?v...d=CVE-2009-2935

http://web.nvd.nist.gov/view/vuln/detail?v...d=CVE-2009-2414

http://web.nvd.nist.gov/view/vuln/detail?v...d=CVE-2009-2416

 

> http://www.google.com/chrome/

For Windows Vista/XP SP2

Edited by apluswebmaster

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v3.0.195.21 released

- http://googlechromereleases.blogspot.com/2...nel-update.html

September 15, 2009

 

- http://code.google.com/p/chromium/issues/detail?id=21238

Severity: Medium...

- http://code.google.com/p/chromium/issues/detail?id=21338

Severity: High...

 

(Issues will be made public once a majority of users are up to date with the fix.)

 

Download:

- http://www.google.com/chrome/

 

:ph34r:

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome vuln - v3.0.195.24 released

- http://secunia.com/advisories/36913/2/

Release Date: 2009-10-01

Critical: Highly critical

Impact: System access

Where: From remote

Solution Status: Vendor Patch

Software: Google Chrome 3.x

Solution: Update to version 3.0.195.24...

Original Advisory: Google:

http://googlechromereleases.blogspot.com/2...-update_30.html

 

Download:

- http://www.google.com/chrome/

 

:ph34r:

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome multiple vulns - update available

- http://secunia.com/advisories/37273/2/

Release Date: 2009-11-06

Critical: Moderately critical

Impact: Exposure of system information, Exposure of sensitive information, System access

Where: From remote

Solution Status: Vendor Patch

Software: Google Chrome 3.x ...

Solution: Update to version 3.0.195.32...

Original Advisory: Google:

http://googlechromereleases.blogspot.com/2009/11/stable-channel-update.html

 

Download:

- http://www.google.com/chrome/

 

:ph34r:

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v3.0.195.33 released

- http://secunia.com/advisories/37358/2/

Release Date: 2009-11-13 ...

Impact: Security Bypass

Where: From remote

Solution Status: Vendor Patch

Software: Google Chrome 3.x ...

Solution: Update to version 3.0.195.33.

Original Advisory:

http://googlechromereleases.blogspot.com/2009/11/stable-update-fix-google-chrome-not.html

 

Download:

- http://www.google.com/chrome/

 

:ph34r:

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v4.0.249.78 released

- http://googlechromereleases.blogspot.com/2010/01/stable-channel-update_25.html

January 25, 2010 - "The stable channel has been updated to 4.0.249.78 for Windows, and includes the following features and security fixes (since 3.0):

* Extensions

* Bookmark sync

* Enhanced developer tools

* HTML5: Notifications, Web Database, Local Storage, WebSockets, Ruby support

* v8 performance improvements

* Skia performance improvements

* Full ACID3 pass, due to re-enabled remote font support (with added defense against bugs in operating system font libraries)

* HTTP byte range support

* New security feature: "Strict Transport Security" support

* Experimental new anti-reflected-XSS feature called "XSS Auditor"

Security Fixes:

Please see the Chromium security page* for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix..."

* http://sites.google.com/a/chromium.org/dev/Home/chromium-security/chromium-security-bugs

 

- http://securitytracker.com/alerts/2010/Jan/1023506.html

Date: Jan 26 2010

 

Download:

- http://www.google.com/chrome/

 

Google Chrome Extensions

- https://chrome.google.com/extensions/list/popular

 

- http://secunia.com/advisories/37769/2/

Release Date: 2010-01-26

Critical: Highly critical

Impact: Security Bypass, Exposure of sensitive information, DoS, System access

Where: From remote

Software: Google Chrome 3.x

Solution: Upgrade to version 4.0.249.78...

Original Advisory: Secunia Research: http://secunia.com/secunia_research/2009-65/

Google: http://googlechromereleases.blogspot.com/2010/01/stable-channel-update_25.html

 

:ph34r:

Edited by apluswebmaster

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v4.0.249.89 released

- http://secunia.com/advisories/38545/

Release Date: 2010-02-11

Ciriticality: Highly critical

Impact: Manipulation of data, Exposure of sensitive information, System access

Where: From remote

Solution Status: Vendor Patch

Software: Google Chrome 4.x

Solution: Update to version 4.0.249.89.

Original Advisory:

http://googlechromereleases.blogspot.com/2010/02/stable-channel-update.html

"The stable channel has been updated to 4.0.249.89 for Windows..."

 

:ph34r:

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v4.1.249.1036 released

- http://secunia.com/advisories/39029/

Release Date: 2010-03-18

Criticality level: Highly critical

Impact: Unknown, Security Bypass, Spoofing

Where: From remote

Solution Status: Vendor Patch

Software: Google Chrome 4.x

Solution: Update to version 4.1.249.1036.

Original Advisory:

http://googlechromereleases.blogspot.com/2010/03/stable-channel-update.html

March 17, 2010

 

:ph34r:

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome 4.1.249.1059 released

- http://secunia.com/advisories/39544/

Release Date: 2010-04-21

Criticality level: Highly critical

Impact: Cross Site Scripting, System access, Unknown

Where: From remote

Solution Status: Vendor Patch

Software: Google Chrome 4.x ...

Solution: Update to version 4.1.249.1059.

Original Advisory:

http://googlechromereleases.blogspot.com/2010/04/stable-update-security-fixes.html

April 20, 2010

 

Download:

- http://www.google.com/chrome/

 

Google Chrome Extensions

- https://chrome.google.com/extensions/list/popular

 

:ph34r:

Edited by apluswebmaster

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v4.1.249.1064 released

- http://secunia.com/advisories/39651/

Release Date: 2010-04-28

Criticality level: Highly critical

Impact: Security Bypass, System access

Where: From remote

Solution Status: Vendor Patch

Software: Google Chrome 4.x

Solution: Update to version 4.1.249.1064.

Original Advisory:

http://googlechromereleases.blogspot.com/2010/04/stable-update-bug-and-security-fixes.html

April 27, 2010

 

- http://royal.pingdom.com/2010/04/08/the-modern-browser-wars-how-well-firefox-ie-and-chrome-succeed-in-getting-their-users-to-upgrade/

April 8, 2010 - "... Google has taken a very different approach to upgrades compared to other browser makers. Their mantra: Don’t ask the user to upgrade, just do it. Google Chrome handles its upgrades in a completely automated fashion, even for a completely new version of the browser... Chrome will just handle that in the background and move ahead with the upgrade..."

 

- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1663

- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1664

- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1665

 

Download:

- http://www.google.com/chrome/

 

Google Chrome Extensions

- https://chrome.google.com/extensions/list/popular

 

:ph34r:

Edited by apluswebmaster

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v5.0.375.55 released

- http://secunia.com/advisories/39934/

Release Date: 2010-05-27

Criticality level: Moderately critical

Impact: Unknown, Security Bypass, Spoofing

Where: From remote

... The vulnerabilities are reported in versions prior to 5.0.375.55.

Solution: Upgrade to version 5.0.375.55...

- http://googlechromereleases.blogspot.com/2010/05/stable-channel-update.html

May 25, 2010

- http://chrome.blogspot.com/2010/05/new-chrome-stable-release-welcome-mac.html

 

- http://securitytracker.com/alerts/2010/May/1024037.html

May 27 2010 ... prior to 5.0.375.55

 

Download:

- http://www.google.com/chrome/

 

Google Chrome Extensions

- https://chrome.google.com/extensions/list/popular

 

:ph34r:

Edited by apluswebmaster

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v5.0.375.70 released

- http://googlechromereleases.blogspot.com/2010/06/stable-channel-update.html

June 8, 2010 - "Google Chrome 5.0.375.70 has been released to the Stable channel on Linux, Mac, and Windows..."

 

- http://www.us-cert.gov/current/#google_releases_chrome_5_01

June 9, 2010

 

- http://securitytracker.com/alerts/2010/Jun/1024088.html

Jun 11 2010

 

:!:

Edited by apluswebmaster

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v5.0.375.86 released

- http://secunia.com/advisories/40351/

Release Date: 2010-06-25

Criticality level: Highly critical

Impact: Unknown, Cross Site Scripting, System access

Where: From remote

Solution: Update to version 5.0.375.86.

Original Advisory:

http://googlechromereleases.blogspot.com/2010/06/stable-channel-update_24.html

 

:!:

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v5.0.375.99 released

- http://secunia.com/advisories/40479/

Release Date: 2010-07-05

Criticality level: Highly critical

Impact: Unknown, System access

Where: From remote ...

Solution: Update to version 5.0.375.99.

Original Advisory:

http://googlechromereleases.blogspot.com/2010/07/stable-channel-update.html

http://code.google.com/p/chromium/issues/detail?id=45983

 

:!:

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v5.0.375.125 released

- http://secunia.com/advisories/40743/

Release Date: 2010-07-27

Criticality level: Highly critical

Impact: Unknown, Exposure of sensitive information, System access

Where: From remote

Solution: Update to version 5.0.375.125...

Original Advisory:

http://googlechromereleases.blogspot.com/2010/07/stable-channel-update_26.html

 

:!:

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v5.0.375.126 released

- http://googlechromereleases.blogspot.com/search/label/Stable%20updates

August 10, 2010 - "Google Chrome 5.0.375.126 has been released to the Stable channel on Linux, Mac, and Windows. This version contains an updated version of the Flash plugin..."

 

- http://secunia.com/advisories/40917/

Release Date: 2010-08-11

Criticality level: Highly critical

Impact: System access

Where: From remote

Solution: Update to version 5.0.375.126...

 

!!

Edited by apluswebmaster

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v5.0.375.127 released

- http://secunia.com/advisories/41014/

Release Date: 2010-08-20

Criticality level: Highly critical

Impact: Unknown, Spoofing, System access

Where: From remote...

Solution: Update to version 5.0.375.127.

Original Advisory: Google:

http://googlechromereleases.blogspot.com/search/label/Stable%20updates

August 19, 2010

 

:ph34r:

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v6.0.472.53 released

- http://secunia.com/advisories/41242/

Release Date: 2010-09-03

Criticality level: Highly critical

Impact: Security Bypass, Spoofing, Exposure of sensitive information, System access

Where: From remote

Software: Google Chrome 5.x

Solution: Fixed in version 6.0.472.53.

Original Advisory:

http://googlechromereleases.blogspot.com/2010/09/stable-and-beta-channel-updates.html

 

:ph34r:

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v6.0.472.62 released

- http://googlechromereleases.blogspot.com/search/label/Stable%20updates

September 17, 2010 - "Google Chrome has been updated to 6.0.472.62 for Windows, Linux and Mac on the Stable channel... this version includes an updated version of the Flash Plugin with a fix for a security vulnerability*...

* http://www.adobe.com/support/security/advisories/apsa10-03.html

 

- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-2884

Last revised: 09/18/2010 - "... as exploited in the wild in September 2010..."

CVSS v2 Base Score: 9.3 (HIGH)

 

(Other) Security fixes: High

- http://code.google.com/p/chromium/issues/detail?id=55114

- http://code.google.com/p/chromium/issues/detail?id=55350

 

:!: :ph34r:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v7.0.517.41 released

- http://secunia.com/advisories/41888/

Release Date: 2010-10-20

Criticality level: Highly critical

Impact: Unknown, Security Bypass, Spoofing, System access

Where: From remote ...

Solution: Fixed in version 7.0.517.41 ...

Original Advisory:

http://googlechromereleases.blogspot.com/2010/10/stable-channel-update.html

... Updates from the previous stable release include:

Hundreds of bug fixes

• An updated HTML5 parser

• File API

• Directory upload via input tag ...

 

:ph34r: :ph34r:

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v7.0.517.44 released

- http://secunia.com/advisories/42109/

Release Date: 2010-11-04

Criticality level: Highly critical

Impact: Unknown, System access

Where: From remote

Solution: Update to version 7.0.517.44.

Original Advisory:

http://googlechromereleases.blogspot.com/2010/11/stable-channel-update.html

November 4, 2010 - "... Along with the security fixes... this build has an updated version of Flash..."

 

:ph34r:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v8.0.552.215 released

- http://secunia.com/advisories/42472/

Release Date: 2010-12-03

Impact: Unknown, Exposure of sensitive information, DoS, System access

Where: From remote

Solution: Fixed in version 8.0.552.215.

 

- http://googlechromereleases.blogspot.com/search/label/Stable%20updates

December 2, 2010 - "... over 800 bug fixes and stability improvements..."

 

- http://www.securitytracker.com/id?1024821

Dec 3 2010

 

- http://www.informationweek.com/shared/printableArticle.jhtml?articleID=228400159

Nov. 29, 2010

 

- http://weblogs.mozillazine.org/asa/archives/2010/11/why_do_they_think_th.html

November 28, 2010

 

:!:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Chrome v8.0.552.224 released

- http://secunia.com/advisories/42605/

Release Date: 2010-12-14

Criticality level: Highly critical

Impact: Unknown, DoS, System access

Where: From remote

Solution Status: Vendor Patch...

Solution: Update to version 8.0.552.224.

Original Advisory:

http://googlechromereleases.blogspot.com/2010/12/stable-beta-channel-updates_13.html

 

:ph34r:

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v8.0.552.237 released

- http://secunia.com/advisories/42850/

Release Date: 2011-01-13

Criticality level: Highly critical

Impact: Unknown, Manipulation of data, System access

Where: From remote

Solution Status: Vendor Patch

Solution: Update to version 8.0.552.237.

Original Advisory:

http://googlechromereleases.blogspot.com/2011/01/chrome-stable-release.html

 

- http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0471

- http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0472

- http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0473

- http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0474

- http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0475

- http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0476

- http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0477

- http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0478

- http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0479

- http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0480

- http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0481

- http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0482

- http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0483

- http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0484

- http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0485

All CVSS v2 Base Score: 9.3-10.0 (HIGH) ... before 8.0.552.237

 

- http://www.securitytracker.com/id?1024957

Jan 13 2011

Impact: A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.

Solution: The vendor has issued a fix (8.0.552.237).

 

- http://www.kb.cert.org/vuls/id/258423

2011-01-13

 

:ph34r:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v9.0.597.84 released

- http://secunia.com/advisories/43193/

Release Date: 2011-02-04

Criticality level: Highly critical

Impact: Security Bypass, DoS, System access

Where: From remote

Solution: Fixed in version 9.0.597.84.

Original Advisory: http://googlechromereleases.blogspot.com/2011/02/stable-channel-update.html

"The stable channel has been updated to 9.0.597.84 for all platforms..."

 

:!:

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v9.0.597.94 released

- http://secunia.com/advisories/43021/

Release Date: 2011-02-08

Criticality level: Highly critical

Impact: Unknown, DoS, System access

Where: From remote...

... The vulnerabilities are reported in versions prior to 9.0.597.94.

Solution: Update to version 9.0.597.94.

Original Advisory:

http://googlechromereleases.blogspot.com/2011/02/stable-channel-update_08.html

 

:!:

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v9.0.597.107 released

- http://www.computerworld.com/s/article/9212079/Google_patches_19_Chrome_bugs_week_before_Pwn2Own_hacking_contest

March 1, 2011 - "Google on Monday patched 19 vulnerabilities in Chrome... update to Chrome 9.0.597.107..."

> http://googlechromereleases.blogspot.com/search/label/Stable%20updates

February 28, 2011 | 15:23 - "The stable channel has been updated to 9.0.597.107 for all platforms. This release contains... security fixes...."

 

- http://www.h-online.com/security/news/item/19-vulnerabilities-Chrome-9-update-proves-expensive-for-Google-1199922.html

1 March 2011 - "... Users who currently have Chrome installed can use the built-in update function by clicking Tools, selecting About Google Chrome and clicking the Update button."

___

 

- http://secunia.com/advisories/43519/

Release Date: 2011-03-01

Criticality level: Highly critical

Impact: Unknown, Spoofing, Exposure of sensitive information, System access

Where: From remote

Solution: Update to version 9.0.597.107.

 

- http://www.securitytracker.com/id/1025133

Mar 1 2011

 

:ph34r:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v10.0.648.127 released

- http://secunia.com/advisories/43683/

Release Date: 2011-03-09

Criticality level: Highly critical

Impact: Unknown, Security Bypass, Exposure of system information, System access

Where: From remote...

Solution: Upgrade to version 10.0.648.127.

Original Advisory:

http://googlechromereleases.blogspot.com/2011/03/chrome-stable-release.html

___

 

- https://www.computerworld.com/s/article/9213809/Google_issues_last_minute_Chrome_fixes_before_Pwn2Own

March 8, 2011 04:09 PM ET - "... Pwn2Own hacking contest starts Wednesday in Canada... fixes 25 flaws..."

 

:!:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v10.0.648.133 released

- http://secunia.com/advisories/43748/

Release Date: 2011-03-14

Criticality level: Highly critical

Impact: System access

Where: From remote

Solution: Update to version 10.0.648.133...

Original Advisory:

http://googlechromereleases.blogspot.com/2011/03/stable-and-beta-channel-updates.html

 

- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-1290

Last revised: 03/14/2011

CVSS v2 Base Score: 10.0 (HIGH)

 

:ph34r: :ph34r:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v10.0.648.151 released

- http://googlechromereleases.blogspot.com/search/label/Stable%20updates

March 17, 2011 - "... updated to 10.0.648.151 for Windows, Mac, Linux and Chrome Frame. This release blacklists a small number of HTTPS certificates*..."

- http://googlechromereleases.blogspot.com/2011/03/stable-and-beta-channel-updates_15.html

March 15, 2011 - "The Chrome Stable and Beta channels have been updated to 10.0.648.134 for Windows, Mac, Linux and Chrome Frame. This release contains an updated version of the Adobe Flash player..."

 

* http://isc.sans.edu/diary.html?storyid=10603

Last Updated: 2011-03-23 18:11:20 UTC

 

- http://techblog.avira.com/2011/03/17/google-faster-than-adobe/en/

March 17, 2011 - "... new Chrome version 10.0.648.134 for Windows, Mac and Linux. It only includes a new version of the Flash Player where the recently found zero day vulnerability is already fixed..."

 

- http://secunia.com/advisories/43757/

Last Update: 2011-03-16 ...

Solution: Update to version 10.0.648.134.

___

 

- http://www.us-cert.gov/current/#google_releases_chrome_10_02

March 17, 2011

 

:ph34r:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v10.0.648.204 released

- http://secunia.com/advisories/43859/

Release Date: 2011-03-25

Criticality level: Highly critical

Impact: System access

Where: From remote

CVE Reference(s): CVE-2011-1291, CVE-2011-1292, CVE-2011-1293, CVE-2011-1294, CVE-2011-1295, CVE-2011-1296 ...

Solution: Update to version 10.0.648.204.

Original Advisory:

http://googlechromereleases.blogspot.com/2011/03/stable-channel-update.html

___

 

When clicking on the tool symbol and choosing the 'About Google Chrome' menu entry, the version check should show that Chrome is already on the current release – or offer to download and install the update.

 

:!: :ph34r:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v10.0.648.205 released

- http://googlechromereleases.blogspot.com/2011/04/stable-channel-update.html

April 14, 2011 - "The Chrome Stable channel has been updated to 10.0.648.205 for Windows, Mac, Linux and Chrome Frame. This release contains a new version of Adobe Flash..."

 

- http://www.securitytracker.com/id/1025377

Date: Apr 15 2011

- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-1300

- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-1301

- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-1302

Last revised: 04/18/2011

[ALL] ... CVSS v2 Base Score: 10.0 (HIGH)

 

- http://www.us-cert.gov/current/#google_releases_chrome_10_04

Apr 15 2011

 

:ph34r:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Chrome v11.0.696.57 released

- http://googlechromereleases.blogspot.com/search/label/Stable%20updates

April 27, 2011

 

- http://chrome.blogspot.com/

 

- http://secunia.com/advisories/44375/

Release Date: 2011-04-28

Criticality level: Highly critical

Impact: Security Bypass, Spoofing, Exposure of sensitive information, System access

Where: From remote

CVE Reference(s): CVE-2011-1303, CVE-2011-1304, CVE-2011-1305, CVE-2011-1434, CVE-2011-1435, CVE-2011-1436, CVE-2011-1437, CVE-2011-1438, CVE-2011-1439, CVE-2011-1440, CVE-2011-1441, CVE-2011-1442, CVE-2011-1443, CVE-2011-1444, CVE-2011-1445, CVE-2011-1446, CVE-2011-1447, CVE-2011-1448, CVE-2011-1449, CVE-2011-1450, CVE-2011-1451, CVE-2011-1452, CVE-2011-1454, CVE-2011-1455, CVE-2011-1456

Solution: Upgrade to version 11.0.696.57.

Original Advisory: Google Chrome:

http://googlechromereleases.blogspot.com/2011/04/chrome-stable-update.html

 

- http://www.securitytracker.com/id/1025453

Apr 28 2011

 

:ph34r:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Chrome v11.0.696.68 released

- http://secunia.com/advisories/44591/

Release Date: 2011-05-13

Criticality level: Highly critical

Impact: Exposure of sensitive information, System access

Where: From remote

CVE Reference(s): CVE-2011-0579, "Flash -before- 10.3.181.14..." Severity: 5.0 (MEDIUM)

CVE-2011-0618 -> CVE-2011-0627 "Flash -before- 10.3.181.14..." Severity: 9.3 (HIGH)

CVE-2011-1799 & CVE-2011-1800 "Chrome -before- 11.0.696.68..." Severity: 6.8 (MEDIUM)

- http://web.nvd.nist.gov/view/vuln/search

Solution: Update to version 11.0.696.68.

 

When clicking on the tool symbol and choosing the 'About Google Chrome' menu entry, the version check should show that Chrome is already on the current release – or offer to download and install the update.

___

 

- http://www.darkreading.com/taxonomy/index/printarticle/id/229403161

May 10, 2011 - "... exploit... using Chrome v11.0.696.65 on Win7SP1 (x64), with the user being lured to visit a malware-rigged Web page, also bypasses [ASLR, DEP], and works on all Windows systems, including Win7/SP1, Vista/SP2, and XP/SP3..."

___

 

- http://googleblog.blogspot.com/2011/05/blogger-is-back.html

5/13/2011 10:33AM PST - "... sorry that you’ve been unable to publish to Blogger for the past 20.5 hours... what happened: during scheduled maintenance work Wednesday night, we experienced some data corruption..."

___

 

- http://googlechromereleases.blogspot.com/2011/05/stable-channel-update.html

5/13/2011 10:51AM PST - "... updated to 11.0.696.68..."

 

:!: :!:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Chrome v11.0.696.71 released

- http://secunia.com/advisories/44678/

Release Date: 2011-05-25

Criticality level: Highly critical

Impact: Security Bypass, System access

Where: From remote

Solution Status: Vendor Patch

CVE Reference(s):

- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-1801

- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-1804

- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-1806

- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-1807

Last revised: 05/26/2011

... vulnerabilities are reported in versions prior to 11.0.696.71.

Solution: Update to version 11.0.696.71.

Original Advisory:

http://googlechromereleases.blogspot.com/2011/05/stable-channel-update_24.html

 

:!: :ph34r:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Chrome v11.0.696.77 released

- http://googlechromereleases.blogspot.com/2011/06/stable-channel-update.html

June 5, 2011 - "The Chrome Stable channel has been updated to 11.0.696.77 for all platforms. This release contains an updated version of Adobe Flash..."

 

- http://krebsonsecurity.com/2011/06/flash-player-patch-fixes-zero-day-flaw/

June 5th, 2011 - "Adobe released an emergency security update today to fix a vulnerability that the company warned is being actively exploited in targeted attacks designed to trick the user into clicking on a malicious link delivered in an email message... The vulnerability — a cross-site scripting bug that could be used to take actions on a user’s behalf on any Web site or Webmail provider, exists in Flash Player version 10.3.181.16 and earlier. Google... pushed out an update that fixes this flaw in Chrome..."

___

 

- http://secunia.com/advisories/44847/

"... The vulnerability is reported in versions prior to 11.0.696.77.

Solution: Update to version 11.0.696.77..."

 

:!:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Chrome v12.0.742.91 released

- http://secunia.com/advisories/44829/

Release Date: 2011-06-08

Criticality level: Highly critical

Impact: Security Bypass, Cross Site Scripting, Exposure of sensitive information, System access

Where: From remote...

CVE Reference(s): CVE-2011-1808, CVE-2011-1809, CVE-2011-1810, CVE-2011-1811, CVE-2011-1812, CVE-2011-1813, CVE-2011-1814, CVE-2011-1815, CVE-2011-1816, CVE-2011-1817, CVE-2011-1818, CVE-2011-1819, CVE-2011-2332, CVE-2011-2342

Solution: Upgrade to version 12.0.742.91.

Original Advisory:

http://googlechromereleases.blogspot.com/2011/06/chrome-stable-release.html

 

:!:

Share this post


Link to post
Share on other sites

FYI...

 

Chrome v12.0.742.100 released

- http://secunia.com/advisories/44950/

Release Date: 2011-06-15

Criticality level: Extremely critical

Impact: System access

Where: From remote

Solution: Update to version 12.0.742.100.

... Reported as a 0-day in Adobe Flash Player.

Original Advisory: Google:

- http://googlechromereleases.blogspot.com/2011/06/stable-beta-channel-updates.html

June 14, 2011

 

:!:

Share this post


Link to post
Share on other sites

FYI...

 

Chrome v12.0.742.112 released

- http://googlechromereleases.blogspot.com/2011/06/stable-channel-update_28.html

June 28, 2011 - "The Chrome Stable channel has been updated to 12.0.742.112 for all platforms. This release contains an updated version of Adobe Flash*, along with the security fixes..."

* http://kb2.adobe.com/cps/901/cpsid_90194.html#main_10.3.181.34

___

 

- http://secunia.com/advisories/45097/

Release Date: 2011-06-29

Criticality level: Highly critical

Impact: Unknown, System access

Where: From remote

CVE Reference(s): CVE-2011-2345, CVE-2011-2346, CVE-2011-2347, CVE-2011-2348, CVE-2011-2349, CVE-2011-2350, CVE-2011-2351

Solution: Update to version 12.0.742.112.

 

- http://www.securitytracker.com/id/1025730

June 28 2011

CVE Reference: CVE-2011-2345, CVE-2011-2346, CVE-2011-2347, CVE-2011-2348, CVE-2011-2349, CVE-2011-2350, CVE-2011-2351

... prior to 12.0.742.112

 

:!:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Chrome v13.0.782.107 released

- http://googlechromereleases.blogspot.com/2011/08/stable-channel-update.html

August 2, 2011

 

- http://secunia.com/advisories/45498/

Release Date: 2011-08-03

Criticality level: Highly critical

Impact: Unknown, Security Bypass, Exposure of system information, Exposure of sensitive information, System access

Where: From remote...

Solution: Upgrade to version 13.0.782.107

 

- http://h-online.com/-1317555

3 August 2011 - "... 14 of the 30 security vulnerabilities fixed by the update are rated as 'high-risk' and include multiple use-after-free errors, cross-origin bugs, and crashes related the built-in PDF viewer and the V8 JavaScript engine used by Chrome. Other holes closed include 9 medium-risk bugs and 7 low-risk issues..."

 

- http://www.securitytracker.com/id/1025882

Aug 3 2011

CVE Reference: CVE-2011-2358, CVE-2011-2359, CVE-2011-2360, CVE-2011-2361, CVE-2011-2782, CVE-2011-2783, CVE-2011-2784, CVE-2011-2785, CVE-2011-2786, CVE-2011-2787, CVE-2011-2788, CVE-2011-2789, CVE-2011-2790, CVE-2011-2791, CVE-2011-2792, CVE-2011-2793, CVE-2011-2794, CVE-2011-2795, CVE-2011-2796, CVE-2011-2797, CVE-2011-2798, CVE-2011-2799, CVE-2011-2800, CVE-2011-2801, CVE-2011-2802, CVE-2011-2803, CVE-2011-2804, CVE-2011-2805, CVE-2011-2818, CVE-2011-2819

 

:!: :ph34r:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

Chrome will automatically upgrade itself.

To make that happen immediately, click the tools (wrench) icon at far upper right and select 'About Google Chrome.'

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v13.0.782.112 released

- https://secunia.com/advisories/45529/

Release Date: 2011-08-10

Criticality level: Highly critical

Impact: Exposure of sensitive information, System access

Where: From remote

Solution Status: Vendor Patch

CVE Reference(s): CVE-2011-2130, CVE-2011-2134, CVE-2011-2135, CVE-2011-2136, CVE-2011-2137, CVE-2011-2138, CVE-2011-2139, CVE-2011-2140, CVE-2011-2414, CVE-2011-2415, CVE-2011-2416, CVE-2011-2417, CVE-2011-2425

... vulnerabilities are caused due to a bundled vulnerable version of Adobe Flash Player...

Solution: Update to version 13.0.782.112.

Original Advisory: Google:

http://googlechromereleases.blogspot.com/search/label/Stable%20updates

 

:!: :ph34r:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Google Chrome v13.0.782.215 released

- https://secunia.com/advisories/45698/

Release Date: 2011-08-23

Criticality level: Highly critical

Impact: Unknown, Security Bypass, System access

Where: From remote

CVE Reference(s): CVE-2011-2806, CVE-2011-2821, CVE-2011-2822, CVE-2011-2823, CVE-2011-2824, CVE-2011-2825, CVE-2011-2826, CVE-2011-2827, CVE-2011-2828, CVE-2011-2829, CVE-2011-2839

Solution: Update to version 13.0.782.215.

Original Advisory:

http://googlechromereleases.blogspot.com/2011/08/stable-channel-update_22.html

 

> https://www.google.com/support/chrome/bin/answer.py?hl=en&answer=95414

 

:!: :ph34r:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

- http://www.theregister.co.uk/2011/09/02/google_chrome_diginotar/

___

 

Google Chrome v13.0.782.218 released

- http://googlechromereleases.blogspot.com/search/label/Stable%20updates

August 30, 2011 - "The Stable channel has also been updated to 13.0.782.218 for Windows, Mac, Linux, and Chrome Frame. These releases contain an updated version of the Adobe Flash Player. We also disabled a certificate authority (CA)*..."

* http://googleonlinesecurity.blogspot.com/2011/08/update-on-attempted-man-in-middle.html

 

:!:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Chrome v13.0.782.220 released

- http://googlechromereleases.blogspot.com/search/label/Stable%20updates

Saturday, September 3, 2011 - "The Stable channel has been updated to 13.0.782.220 for Windows, Mac, Linux, and Chrome Frame.

We're revoking trust for SSL certificates issued by DigiNotar-controlled intermediate CAs used by the Dutch PKIoverheid program. For more details about the security issues see the Google Security Blog post about DigiNotar* and an update from Mozilla**, who is also moving to revoke trust in these certificates..."

* http://googleonlinesecurity.blogspot.com/2011/08/update-on-attempted-man-in-middle.html

Update Sept 3

 

** http://blog.mozilla.com/security/2011/09/02/diginotar-removal-follow-up

 

:!:

Share this post


Link to post
Share on other sites

FYI...

 

Chrome v14.0.835.163 released

- http://googlechromereleases.blogspot.com/search/label/Stable%20updates

September 16, 2011 - "The Chrome Stable channel has been updated to 14.0.835.163 for all platforms. This release contains... security fixes...

CVE-2011-2834, CVE-2011-2835, CVE-2011-2836, CVE-2011-2837, CVE-2011-2838, CVE-2011-2839, CVE-2011-2840, CVE-2011-2841, CVE-2011-2842, CVE-2011-2843, CVE-2011-2844, CVE-2011-2846, CVE-2011-2847, CVE-2011-2848, CVE-2011-2849, CVE-2011-2850, CVE-2011-2851, CVE-2011-2852, CVE-2011-2853, CVE-2011-2854, CVE-2011-2855, CVE-2011-2856, CVE-2011-2857, CVE-2011-2859, CVE-2011-2860, CVE-2011-2861, CVE-2011-2862, CVE-2011-2864, CVE-2011-2874, CVE-2011-2875, CVE-2011-3234..."

 

- https://secunia.com/advisories/46049/

Release Date: 2011-09-19

Criticality level: Highly critical

Impact: Unknown, Security Bypass, Spoofing, Exposure of sensitive information, System access

Where: From remote...

Solution: Upgrade to version 14.0.835.163.

 

- https://www.us-cert.gov/current/#google_releases_chrome_14_0

September 19, 2011

 

:!: :ph34r:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Chrome v14.0.835.186 released

- https://secunia.com/advisories/46102/

Release Date: 2011-09-21

Criticality level: Highly critical

Impact: Cross Site Scripting, System access

Where: From remote

... vulnerabilities are caused due to a bundled vulnerable version of Adobe Flash Player...

Solution: Update to version 14.0.835.186.

Original Advisory:

http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_20.html

... includes an update to Flash Player that addresses a zero-day vulnerability...

... Release highlights:

Pepper flash: update to 10.3.200.107

Crash fixes...

 

:!: :ph34r:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

FYI...

 

Chrome v14.0.835.187 released

- http://googlechromereleases.blogspot.com/search/label/Stable%20updates

October 1, 2011 - "The Chrome Stable channel has been updated to 14.0.835.187, and the Beta channel has been updated to 15.0.874.58. These updates should help repair Chrome installs that were broken due to the issue with Microsoft Security Essentials, discussed on the Chrome Blog*..."

* http://chrome.blogspot.com/2011/09/problems-with-microsoft-security.html

 

:ph34r:

Share this post


Link to post
Share on other sites

FYI...

 

Chrome v14.0.835.202 released

- https://secunia.com/advisories/46308/

Release Date: 2011-10-05

Criticality level: Highly critical

Impact: Security Bypass, System access

Where: From remote ...

Solution: Update to 14.0.835.202.

 

- http://googlechromereleases.blogspot.com/search/label/Stable%20updates

October 4, 2011 - "The Stable channel has been updated to 14.0.835.202 for Windows, Mac, Linux, and Chrome Frame. This release contains Adobe Flash Player 11, along with the stability and security fixes..."

 

- http://www.securitytracker.com/id/1026137

CVE Reference: CVE-2011-2876, CVE-2011-2877, CVE-2011-2878, CVE-2011-2879, CVE-2011-2880, CVE-2011-2881, CVE-2011-3873

Oct 4 2011

Impact: Disclosure of user information, Execution of arbitrary code via network, Modification of user information, User access via network

Version(s): prior to 14.0.835.202

 

:ph34r:

Edited by AplusWebMaster

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now