Chrome 20 fixes 20 security vulnerabilities
Summary: In its latest browser release, 20.0.1132.43, Google's Chrome fixes 20 security vulnerabilities, none of which are critical.
In its latest browser release, 20.0.1132.43, Google's Chrome fixes 20 security vulnerabilities, none of which are critical.
More details on the vulnerabilities:
- CVE-2012-2815: Leak of iframe fragment id
- CVE-2012-2816: Prevent sandboxed processes interfering with each other
- CVE-2012-2817: Use-after-free in table section handling
- CVE-2012-2818: Use-after-free in counter layout
- CVE-2012-2819: Crash in texture handling
- CVE-2012-2820: Out-of-bounds read in SVG filter handling
- CVE-2012-2821: Autofill display problem
- CVE-2012-2822: Misc. lower severity OOB read issues in PDF
- CVE-2012-2823: Use-after-free in SVG resource handling
- CVE-2012-2824: Use-after-free in SVG painting
- CVE-2012-2826: Out-of-bounds read in texture conversion
- CVE-2012-2827: Use-after-free in Mac UI
- CVE-2012-2828: Integer overflows in PDF
- CVE-2012-2829: Use-after-free in first-letter handling
- CVE-2012-2830: Wild pointer in array value setting
- CVE-2012-2764: Unqualified load of metro DLL
- CVE-2012-2831: Use-after-free in SVG reference handling
- CVE-2012-2832: Uninitialized pointer in PDF image codec
- CVE-2012-2833: Buffer overflow in PDF JS API
- CVE-2012-2834: Integer overflow in Matroska container
Users are advised to restart their browsers in order to update to the latest version of Chrome. They can also do so manually, by selecting the "About Google Chrome" option in the settings menu.
Find out more about Dancho Danchev at his LinkedIn profile, or follow him on Twitter.
Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.
Talkback
Chrome 20 fixes 20 security vulnerabilities
Im shocked, shocked I tell you. Wait you mean there weren't zero security
No
FF
Google is your Big Brother spy-ware.
Sounds right to me...
Errr.....
Compare that with the other browsers out there. IE had 4 vulnerab ilities but in 2 months. I think the previous update had something like 3 bugs - also after 2 months. [Chrome probably had 3-4 releases in 2 months totaling propbably 60-70 bugs].
Firefox? Not really much bugs lately. Mostly stability issues.
Safari? Opera? Who uses them?
Don't believe me? See http://www.gfi.com/blog/research-web-browser-war-security-battle-in-2011/ Note the first graph. Note the test that says "For example, Microsoft only had 244 vulnerabilities reported in 2011 in all their products!" while Chrome on its own had 275!
Note
While there are some differences in the number of vulnerabilities and exploits for each browser the fact is that there is no such thing as a web browser that???s completely secure and therefore, patching them is one way to lower the risk of a security breach as much as possible.
Annoying
Its kind of annoying.