-
Chrome/Flash v11.8.800.170 updated
FYI...
Chrome/Flash v11.8.800.170 updated
- http://googlechromereleases.blogspot...er-update.html
September 10, 2013 - "Flash Player Update: We are updating Flash Player to version 11.8.800.170 on Windows and Mac via our component update system (i.e. there will -not- be a Chrome update)..."
:blink:
-
Chrome 30.0.1599.66 released ...
FYI...
Chrome 30.0.1599.66 released
- http://googlechromereleases.blogspot...el-update.html
Oct 1, 2013 - "... Chrome 30 to the Stable channel for Windows, Mac, Linux and Chrome Frame. Chrome 30.0.1599.66 contains a number of fixes and improvements, including:
Easier searching by image
A number of new apps/extension APIs
Lots of under the hood changes for stability and performance ...
... This update includes -50- security fixes..."
- https://secunia.com/advisories/55087/
Release Date: 2013-10-02
Criticality: Highly Critical
Where: From remote
Impact: Spoofing, Unknown, System access...
CVE Reference(s): CVE-2013-2906, CVE-2013-2907, CVE-2013-2908, CVE-2013-2909, CVE-2013-2910, CVE-2013-2911, CVE-2013-2912, CVE-2013-2913, CVE-2013-2914, CVE-2013-2915, CVE-2013-2916, CVE-2013-2917, CVE-2013-2918, CVE-2013-2919, CVE-2013-2920, CVE-2013-2921, CVE-2013-2922, CVE-2013-2923, CVE-2013-2924
... vulnerabilities are reported in versions prior to 30.0.1599.66.
Solution: Upgrade to version 30.0.1599.66.
Original Advisory:
http://googlechromereleases.blogspot...el-update.html
:fear::fear:
-
Chrome v30.0.1599.101 released
FYI...
Chrome v30.0.1599.101 released
- https://secunia.com/advisories/55269/
Release Date: 2013-10-16
Criticality: Highly Critical
Where: From remote
Impact: Unknown, System access...
CVE Reference(s): CVE-2013-2925, CVE-2013-2926, CVE-2013-2927, CVE-2013-2928
... vulnerabilities are reported in versions prior to 30.0.1599.101.
Solution: Update to version 30.0.1599.101.
Original Advisory:
http://googlechromereleases.blogspot...update_15.html
Oct 15, 2013 - "... This update includes 5 security fixes..."
:fear::fear:
-
Chrome v31.0.1650.48 released
FYI...
Chrome v31.0.1650.48 released
- http://googlechromereleases.blogspot...el-update.html
Nov 12, 2013 - "Chrome has been updated to 31.0.1650.48 for Windows, Mac, Linux and Chrome Frame. Flash Player has been updated to 11.9.900.152, which is included w/ this release... This update includes 25 security fixes..."
___
- http://www.securitytracker.com/id/1029330
CVE Reference: CVE-2013-2931, CVE-2013-6621, CVE-2013-6622, CVE-2013-6623, CVE-2013-6624, CVE-2013-6625, CVE-2013-6626, CVE-2013-6627, CVE-2013-6628, CVE-2013-6629, CVE-2013-6630, CVE-2013-6631
Nov 12 2013
Impact: Execution of arbitrary code via network, Modification of system information, User access via network
Fix Available: Yes Vendor Confirmed: Yes
Version(s): prior to 31.0.1650.48 ...
:fear::fear:
-
Chrome 31.0.1650.57 released
FYI...
Chrome 31.0.1650.57 released
- http://googlechromereleases.blogspot...update_14.html
Nov 14, 2013 - "Chrome has been updated to 31.0.1650.57 for Windows, Mac, Linux and Chrome Frame..."
- https://secunia.com/advisories/55731/
Release Date: 2013-11-15
Criticality: Highly Critical
Where: From remote
Impact: System access...
CVE Reference: https://web.nvd.nist.gov/view/vuln/d...=CVE-2013-6632 - 9.3 (HIGH)
... vulnerabilities are reported in versions prior to 31.0.1650.57 running on Windows, Mac, Linux, and Chrome Frame.
Solution: Update to version 31.0.1650.57.
Original Advisory:
http://googlechromereleases.blogspot...update_14.html
:fear:
-
Chrome 31.0.1650.63 released
FYI...
Chrome 31.0.1650.63 released
- https://secunia.com/advisories/55942/
Release Date: 2013-12-05
Criticality: Highly Critical
Where: From remote
Impact: Unknown, Hijacking, Spoofing, System access
Solution Status: Vendor Patch...
CVE Reference(s): CVE-2013-6634, CVE-2013-6635, CVE-2013-6636, CVE-2013-6637, CVE-2013-6638, CVE-2013-6639, CVE-2013-6640
... vulnerabilities are reported in versions prior to 31.0.1650.63.
Solution: Update to version 31.0.1650.63.
Original Advisory:
http://googlechromereleases.blogspot...el-update.html
"... This update includes -15- security fixes..."
:fear::fear:
-
Chrome 32.0.1700.76 released
FYI...
Chrome 32.0.1700.76 released
- https://secunia.com/advisories/56248/
Release Date: 2014-01-14
Criticality: Highly Critical
Where: From remote
Impact: Security Bypass, Spoofing, System access
CVE Reference(s): CVE-2013-6641, CVE-2013-6642, CVE-2013-6643, CVE-2013-6644, CVE-2013-6645, CVE-2013-6646
Solution: Upgrade to a fixed version.
Original Advisory:
- http://googlechromereleases.blogspot...el-update.html
"... 32.0.1700.76 for Windows and Chrome Frame and 32.0.1700.77 for Mac and Linux. This release contains a number of fixes and improvements... Flash Player has been updated to 12.0.0.41, which is included w/ this release..."
:fear::fear:
-
Chrome 32.0.1700.102 released ...
FYI...
Chrome 32.0.1700.102 released
- https://secunia.com/advisories/56640/
Release Date: 2014-01-28
Criticality: Highly Critical
Where: From remote
Impact: Unknown, System access...
CVE Reference(s):
- https://web.nvd.nist.gov/view/vuln/d...=CVE-2013-6649 - 7.5 (HIGH)
- https://web.nvd.nist.gov/view/vuln/d...=CVE-2013-6650 - 7.5 (HIGH)
... vulnerabilities are reported in versions prior to 32.0.1700.102.
Solution: Update to version 32.0.1700.102.
Original Advisory:
http://googlechromereleases.blogspot...update_27.html
"... This update includes -14- security fixes..."
:fear::fear:
-
Chrome 32.0.1700.107 ...
FYI...
Chrome 32.0.1700.107 - Flash Player updated
- https://secunia.com/advisories/56437/
Release Date: 2014-02-06
Criticality: Highly Critical ...
Where: From remote
Impact: System access...
CVE Reference: CVE-2014-0497 ...
For more information: https://secunia.com/SA56737/
Solution: Update to version 32.0.1700.107.
Original Advisory:
- http://googlechromereleases.blogspot...el-update.html
"... This build contains security updates for Flash player..."
:fear:
-
Chrome 33.0.1750.117 released
FYI...
Chrome 33.0.1750.117 released
- https://secunia.com/advisories/57028/
Release Date: 2014-02-21
Criticality: Highly Critical
Where: From remote
Impact: Unknown, Exposure of sensitive information, System access
CVE Reference(s): CVE-2013-6652, CVE-2013-6653, CVE-2013-6654, CVE-2013-6655, CVE-2013-6656, CVE-2013-6657, CVE-2013-6658, CVE-2013-6659, CVE-2013-6660, CVE-2013-6661
... vulnerabilities are reported in versions prior to 33.0.1750.117.
Solution: Upgrade to version 33.0.1750.117.
Original Advisory:
- http://googlechromereleases.blogspot...update_20.html
"... This update includes -28- security fixes..."
- http://www.securitytracker.com/id/1029813
Feb 22 2014
Impact: Disclosure of system information, Disclosure of user information, Execution of arbitrary code via network, User access via network
Fix Available: Yes Vendor Confirmed: Yes
Version(s): prior to 33.0.1750.117 ...
Impact: A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.
Solution: The vendor has issued a fix (33.0.1750.117)...
:fear::fear:
-
Chrome 33.0.1750.14 for iOS
FYI...
Chrome 33.0.1750.14 for iOS
- https://secunia.com/advisories/57035/
Release Date: 2014-02-24
Criticality: Moderately Critical
Where: From remote
Impact: Unknown ...
Software: Google Chrome for iOS 32.x
Solution: Upgrade to version 33.0.1750.14
Original Advisory:
- https://itunes.apple.com/us/app/chrome/id535886823
:fear:
-
Chrome 33.0.1750.146 released
FYI...
Chrome 33.0.1750.146 released
- https://secunia.com/advisories/57194/
Release Date: 2014-03-04
Criticality: Highly Critical
Where: From remote
Impact: Security Bypass, System access...
CVE Reference(s): CVE-2013-6663, CVE-2013-6664, CVE-2013-6665, CVE-2013-6666, CVE-2013-6667, CVE-2013-6668
Solution: Update to version 33.0.1750.146...
Original Advisory:
- http://googlechromereleases.blogspot...el-update.html
"... This update includes -19- security fixes..."
:fear:
-
Chrome 33.0.1750.149 released
FYI...
Chrome 33.0.1750.149 released
- https://secunia.com/advisories/57164/
Release Date: 2014-03-11
Criticality: Highly Critical
Where: From remote
Impact: Unknown, Security Bypass, Cross Site Scripting, Exposure of sensitive information, System access
CVE Reference(s): CVE-2014-0503, CVE-2014-0504, CVE-2014-1700, CVE-2014-1701, CVE-2014-1702, CVE-2014-1703, CVE-2014-1704
... vulnerabilities are reported in versions prior to 33.0.1750.149.
Solution: Update to version 33.0.1750.149.
Original Advisory:
- http://googlechromereleases.blogspot...update_11.html
"... This update includes 7 security fixes..."
:fear:
-
Chrome 33.0.1750.154 released
FYI...
Chrome 33.0.1750.154 released
- https://secunia.com/advisories/57439/
Release Date: 2014-03-17
Criticality: Highly Critical
Impact: System access
Solution Status: Vendor Patch
CVE Reference(s): CVE-2014-1705, CVE-2014-1713 ...
... vulnerabilities are reported in versions prior to 33.0.1750.152 for Mac and Linux and prior to 33.0.1750.154 for Windows.
Solution: Update to a patched version.
Original Advisory:
- http://googlechromereleases.blogspot...update_14.html
"... updated to 33.0.1750.152 for Mac and Linux and 33.0.1750.154 for Windows..."
___
Chrome for Android 33.0.1750.166 released
- https://secunia.com/advisories/57440/
Release Date: 2014-03-17
Criticality: Highly Critical
Impact: System access
Solution Status: Vendor Patch
CVE Reference(s):
- https://web.nvd.nist.gov/view/vuln/d...=CVE-2014-1705 - 7.5 (HIGH)
- https://web.nvd.nist.gov/view/vuln/d...=CVE-2014-1710 - 7.5 (HIGH)
- https://web.nvd.nist.gov/view/vuln/d...=CVE-2014-1713 - 7.5 (HIGH)
For more information: https://secunia.com/SA57439/
... vulnerabilities are reported in versions prior to 33.0.1750.166.
Solution: Update to version 33.0.1750.166.
Original Advisory:
- http://googlechromereleases.blogspot...id-update.html
"... update includes bugs we received from security researchers attending CanSecWest 2014..."
:fear::fear:
-
Chrome 34.0.1847.116 released
FYI...
Chrome 34.0.1847.116 released
- https://secunia.com/advisories/57506/
Release Date: 2014-04-08
Criticality: Highly Critical
Where: From remote
Impact: Unknown, Security Bypass, Cross Site Scripting, System access
CVE Reference(s): CVE-2014-1716, CVE-2014-1717, CVE-2014-1718, CVE-2014-1719, CVE-2014-1720, CVE-2014-1721, CVE-2014-1722, CVE-2014-1723, CVE-2014-1724, CVE-2014-1725, CVE-2014-1726, CVE-2014-1727, CVE-2014-1728, CVE-2014-1729
Solution: Upgrade to version 34.0.1847.116.
Original Advisory:
- http://googlechromereleases.blogspot...el-update.html
"... Flash Player has been updated to 13.0.0.182, which is included w/ this release...
This update includes -31- security fixes..."
:fear:
-
Chrome 34.0.1847.131 released
FYI...
Chrome 34.0.1847.131 released
- https://secunia.com/advisories/58301/
Release Date: 2014-04-28
Criticality: Highly Critical
Where: From remote
Impact: Unknown, System access...
CVE Reference(s): CVE-2014-1730, CVE-2014-1731, CVE-2014-1732, CVE-2014-1733, CVE-2014-1734, CVE-2014-1735
Solution: Update to version 34.0.1847.131 for Windows and Mac or version 34.0.1847.132 for Linux.
Original Advisory:
- http://googlechromereleases.blogspot...update_24.html
"... This release also contains a Flash Player update, to version 13.0.0.206... This update includes 9 security fixes..."
:fear::fear:
-
Chrome 34.0.1847.137 released
FYI...
Chrome 34.0.1847.137 released
- https://secunia.com/advisories/58312/
Release Date: 2014-05-13
Criticality: Highly Critical
Where: From remote
Impact: Security Bypass, System access
CVE Reference(s): CVE-2014-0510, CVE-2014-0516, CVE-2014-0517, CVE-2014-0518, CVE-2014-0519, CVE-2014-0520, CVE-2014-1740, CVE-2014-1741, CVE-2014-1742
For more information: https://secunia.com/SA58074/
Original Advisory:
- http://googlechromereleases.blogspot...el-update.html
"... This release also contains a Flash Player update, to version 13.0.0.214... This update includes 3 security fixes..."
:fear:
-
Chrome 35.0.1916.114 released
FYI...
Chrome 35.0.1916.114 released
- http://www.securitytracker.com/id/1030270
CVE Reference: CVE-2014-1743, CVE-2014-1744, CVE-2014-1745, CVE-2014-1746, CVE-2014-1747, CVE-2014-1748, CVE-2014-1749, CVE-2014-3152
May 22 2014
Impact: Disclosure of system information, Disclosure of user information, Execution of arbitrary code via network, Modification of user information, User access via network
Fix Available: Yes Vendor Confirmed: Yes
Version(s): prior to 35.0.1916.114...
Solution: The vendor has issued a fix (35.0.1916.114).
The vendor's advisory is available at:
- http://googlechromereleases.blogspot...update_20.html
"... This update includes -23- security fixes..."
:fear::fear:
-
Chrome for Android 35.0.1916.141 released
FYI...
Chrome for Android 35.0.1916.141 released
- https://secunia.com/advisories/57709/
Release Date: 2014-06-09
Criticality: Highly Critical
Where: From remote
Impact: Manipulation of data, Exposure of sensitive information, System access
CVE Reference(s): CVE-2014-0195, CVE-2014-0221, CVE-2014-0224, CVE-2014-3470
For more information: https://secunia.com/SA58403/
... security issue and vulnerability are reported in versions prior to 35.0.1916.141.
Solution: Upgrade to version 35.0.1916.141.
Original Advisory:
- http://googlechromereleases.blogspot...id-update.html
___
- http://threatpost.com/android-ransom...devices/106535
June 9, 2014
:fear:
-
Chrome 35.0.1916.153 released
FYI...
Chrome 35.0.1916.153 released
- https://secunia.com/advisories/58585/
Release Date: 2014-06-10
Criticality: Highly Critical
Where: From remote
Impact: Unknown, Security Bypass, Cross Site Scripting, System access
Solution Status: Vendor Patch
CVE Reference(s): CVE-2014-0531, CVE-2014-0532, CVE-2014-0533, CVE-2014-0534, CVE-2014-0535,
CVE-2014-0536, CVE-2014-3154, CVE-2014-3155, CVE-2014-3156, CVE-2014-3157
... vulnerabilities are reported in versions prior to 35.0.1916.153.
Solution: Update to version 35.0.1916.153.
Original Advisory:
- http://googlechromereleases.blogspot...el-update.html
June 10, 2014 - "... This update includes 4 security fixes..."
___
- http://googlechromereleases.blogspot...er-update.html
July 8, 2014 - "We are updating Flash Player to version 14.0.0.145 on Windows and Mac via our component update system (i.e. there will not be a Chrome update)..."
:fear:
-
Chrome 36.0.1985.125 released
FYI...
Chrome 36.0.1985.125 released
- https://secunia.com/advisories/60077/
Release Date: 2014-07-17
Criticality: Moderately Critical
Where: From remote
Impact: Unknown, Security Bypass
CVE Reference(s): CVE-2014-3160, CVE-2014-3162
... vulnerabilities are reported in versions prior to 36.0.1985.125.
Solution: Upgrade to version 36.0.1985.125.
Original Advisory:
- http://googlechromereleases.blogspot...el-update.html
"... This update includes 26 security fixes..."
:fear:
-
Chrome 36.0.1985.143 released
FYI...
Chrome 36.0.1985.143 released
- http://googlechromereleases.blogspot...el-update.html
Aug 12, 2014 - "The Stable Channel has been updated to 36.0.1985.143 for Windows, Mac and Linux. This release contains a Flash Player update... This update includes -12- security fixes..."
- https://web.nvd.nist.gov/view/vuln/d...=CVE-2014-3165 - 7.5 (HIGH)
- https://web.nvd.nist.gov/view/vuln/d...=CVE-2014-3166 - 5.0
- https://web.nvd.nist.gov/view/vuln/d...=CVE-2014-3167 - 7.5 (HIGH)
___
- http://www.securitytracker.com/id/1030732
CVE Reference: CVE-2014-3165, CVE-2014-3166, CVE-2014-3167
Aug 14 2014
Fix Available: Yes Vendor Confirmed: Yes
Version(s): prior to 36.0.1985.143
Impact: A remote user can create a file that, when loaded by the target user, will execute arbitrary code on the target user's system...
Solution: The vendor has issued a fix (36.0.1985.143)...
:fear:
-
Chrome 37.0.2062.94 released
FYI...
Chrome 37.0.2062.94 released
- http://googlechromereleases.blogspot...update_26.html
Aug 26, 2014 - "... promotion of Chrome 37 to the stable channel for Windows, Mac and Linux. Chrome 37.0.2062.94 contains a number of fixes and improvements, including:
- DirectWrite support on Windows for improved font rendering
- A number of new apps/extension APIs
- Lots of under the hood changes for stability and performance...
This update includes -50- security fixes..."
- https://secunia.com/advisories/60268/
Release Date: 2014-08-27
Criticality: Highly Critical
Where: From remote
Impact: Unknown, Security Bypass, Spoofing, System access...
CVE Reference(s): CVE-2014-3168, CVE-2014-3169, CVE-2014-3170, CVE-2014-3171, CVE-2014-3172,
CVE-2014-3173, CVE-2014-3174, CVE-2014-3175, CVE-2014-3176, CVE-2014-3177 ...
Some vulnerabilities have been reported in Google Chrome, where some have an unknown impact and others can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, and compromise a user's system...
Solution: Upgrade to version 37.0.2062.94...
- http://www.securitytracker.com/id/1030767
CVE Reference: CVE-2014-3168, CVE-2014-3169, CVE-2014-3170, CVE-2014-3171, CVE-2014-3172, CVE-2014-3173, CVE-2014-3174, CVE-2014-3175, CVE-2014-3176, CVE-2014-3177
Aug 28 2014
Impact: Disclosure of system information, Disclosure of user information, Execution of arbitrary code via network, User access via network
Fix Available: Yes Vendor Confirmed: Yes
Version(s): prior to 37.0.2062.94 ...
___
- https://www.us-cert.gov/ncas/current...Updates-Chrome
Aug 27, 2014 - "...update includes 50 security fixes some of which could allow a remote attacker to obtain unauthorized access or cause a denial of service..."
:fear: :blink:
-
Chrome 37.0.2062.120 released
FYI...
Chrome 37.0.2062.120 released
- http://googlechromereleases.blogspot...-update_9.html
Sep 9, 2014 - "The stable channel has been updated to 37.0.2062.120 for Windows, Mac and Linux. This release contains an update for Adobe Flash as well as a number of other fixes...
This update includes 4 security fixes..."
- https://secunia.com/advisories/60988/
Release Date: 2014-09-09
Criticality: Highly Critical
Where: From remote
Impact: Unknown, Security Bypass, System access
CVE Reference(s): CVE-2014-0547, CVE-2014-0548, CVE-2014-0549, CVE-2014-0550, CVE-2014-0551, CVE-2014-0552, CVE-2014-0553, CVE-2014-0554, CVE-2014-0555, CVE-2014-0556, CVE-2014-0557, CVE-2014-0559, CVE-2014-3178, CVE-2014-3179
... vulnerabilities are reported in versions prior to 37.0.2062.120.
Solution: Update to version 37.0.2062.120.
:fear:
-
Chrome 37.0.2062.124 released
FYI...
Chrome 37.0.2062.124 released
- http://googlechromereleases.blogspot...update_24.html
Sep 24, 2014 - "The stable channel has been updated to 37.0.2062.124 for Windows and Mac.
This build contains a security change:
[414124] RSA signature malleability in NSS (CVE-2014-1568)..."
> https://www.us-cert.gov/ncas/current...-Vulnerability
Sep 24, 2014
- http://www.kb.cert.org/vuls/id/772676
24 Sep 2014 - "... This vulnerability may allow an attacker to forge a RSA signature, such as a SSL certificate..."
- http://www.securitytracker.com/id/1030900
CVE Reference: https://web.nvd.nist.gov/view/vuln/d...=CVE-2014-1568 - 7.5 (HIGH)
Sep 24 2014
Impact: Disclosure of system information, Disclosure of user information, Modification of authentication information, Modification of system information, Modification of user information
Fix Available: Yes Vendor Confirmed: Yes
Version(s): prior to 37.0.2062.124 ...
:fear::fear:
-
Chrome 38.0.2125.101 released
FYI...
Chrome 38.0.2125.101 released
- http://googlechromereleases.blogspot...el-update.html
Oct 7, 2014 - "... Chrome 38.0.2125.101 contains a number of fixes and improvements... This update includes -159- security fixes, including -113- relatively minor fixes found using MemorySanitizer..."
CVE Reference(s): CVE-2014-3188, CVE-2014-3189, CVE-2014-3190, CVE-2014-3191, CVE-2014-3192, CVE-2014-3193, CVE-2014-3194, CVE-2014-3195, CVE-2014-3196, CVE-2014-3197, CVE-2014-3198, CVE-2014-3199, CVE-2014-3200
- https://www.us-cert.gov/ncas/current...-and-Chrome-OS
___
- http://www.securitytracker.com/id/1030980
CVE Reference: CVE-2014-3188, CVE-2014-3189, CVE-2014-3190, CVE-2014-3191, CVE-2014-3192, CVE-2014-3193, CVE-2014-3194, CVE-2014-3195, CVE-2014-3196, CVE-2014-3197, CVE-2014-3198, CVE-2014-3199, CVE-2014-3200
Oct 9 2014
Impact: Disclosure of system information, Disclosure of user information, Execution of arbitrary code via network, User access via network
Fix Available: Yes Vendor Confirmed: Yes
Version(s): prior to 38.0.2125.101 ...
:fear::fear:
-
Chrome 38.0.2125.104 released
FYI...
Chrome 38.0.2125.104 released
- http://googlechromereleases.blogspot...update_14.html
Oct 14, 2014 - "The stable channel has been updated to 38.0.2125.104 for Windows, Mac and Linux. This release contains an update for Adobe Flash as well as a number of other fixes. A full list of changes is available in the log*..."
* https://chromium.googlesource.com/ch...fuller&n=10000
CVE Reference(s): CVE-2014-0558, CVE-2014-0564, CVE-2014-0569
___
- https://www.us-cert.gov/ncas/current...-and-Chrome-OS
Oct 16, 2014
:fear:
-
Chrome 38.0.2125.122 released
FYI...
Chrome 38.0.2125.122 released
- http://googlechromereleases.blogspot...el-update.html
Nov 11, 2014 - "The stable channel has been updated to 38.0.2125.122 for Windows, Mac and Linux. This release contains an update for Adobe Flash as well as a number of other fixes. A full list of changes is available in the log*..."
* https://chromium.googlesource.com/ch...fuller&n=10000
:fear:
-
Chrome 39.0.2171.65 released
FYI...
Chrome 39.0.2171.65 released
- http://googlechromereleases.blogspot...update_18.html
Nov 18, 2014 - "... Chrome 39.0.2171.65 contains a number of fixes and improvements, including:
64-bit support for Mac
A number of new apps/extension APIs
Lots of under the hood changes for stability and performance ...
This update includes -42- security fixes..."
___
- http://www.securitytracker.com/id/1031241
CVE Reference: CVE-2014-7899, CVE-2014-7900, CVE-2014-7901, CVE-2014-7902, CVE-2014-7903, CVE-2014-7904, CVE-2014-7905, CVE-2014-7906, CVE-2014-7907, CVE-2014-7908, CVE-2014-7909, CVE-2014-7910
Nov 20 2014
Impact: A remote user can create HTML that, when loaded by the target user, will execute arbitrary code on the target user's system.
A remote user can obtain potentially sensitive information.
Solution: The vendor has issued a fix (39.0.2171.65)...
:fear::fear:
-
Chrome 39.0.2171.71 released
FYI...
Chrome 39.0.2171.71 released
- http://googlechromereleases.blogspot...update_25.html
Nov 25, 2014 - "The stable channel has been updated to 39.0.2171.71 for Windows, Mac and Linux. This release contains an update for Adobe Flash* as well as a number of other fixes..."
* https://helpx.adobe.com/flash-player...ase_notes.html
Nov 25, 2014
:fear::fear:
-
Chrome 39.0.2171.95 released
FYI...
Chrome 39.0.2171.95 released
- http://googlechromereleases.blogspot...el-update.html
Dec 9, 2014 - "The stable channel has been updated to 39.0.2171.95 for Windows, Mac and Linux. This release contains an update for Adobe Flash as well as a number of other fixes..."
:fear:
-
Chrome 39.0.2171.99 released
FYI...
Chrome 39.0.2171.99 released
- http://googlechromereleases.blogspot...el-update.html
Jan 13, 2015 - "The stable channel has been updated to 39.0.2171.99 for Windows, Mac and Linux. This release contains an update for Adobe -Flash- as well as a number of other fixes. A full list of changes is available in the log*..."
* https://chromium.googlesource.com/ch...fuller&n=10000
:fear:
-
Chrome 40.0.2214.91 released ...
FYI...
Chrome 40.0.2214.91 released
- http://googlechromereleases.blogspot...le-update.html
Jan 21 2015 - "... promotion of Chrome 40 to the stable channel for Windows, Mac and Linux. Chrome 40.0.2214.91 contains a number of fixes and improvements, including:
Updated info dialog for Chrome app on Windows and Linux.
A new clock behind/ahead error message.
A partial list of changes is available in the log*... This update includes -62- security fixes..."
* https://chromium.googlesource.com/ch...fuller&n=10000
["Comments" read: "... flash player version now 16.287"
___
- http://www.securitytracker.com/id/1031623
CVE Reference: CVE-2014-7923, CVE-2014-7924, CVE-2014-7925, CVE-2014-7926, CVE-2014-7927, CVE-2014-7928, CVE-2014-7929, CVE-2014-7930, CVE-2014-7931, CVE-2014-7932, CVE-2014-7933, CVE-2014-7934, CVE-2014-7935, CVE-2014-7936, CVE-2014-7937, CVE-2014-7938, CVE-2014-7939, CVE-2014-7940, CVE-2014-7941, CVE-2014-7942, CVE-2014-7943, CVE-2014-7944, CVE-2014-7945, CVE-2014-7946, CVE-2014-7947, CVE-2014-7948, CVE-2015-1205, CVE-2015-1346
Jan 23 2015
Impact: Denial of service via network, Execution of arbitrary code via network, User access via network
Fix Available: Yes Vendor Confirmed: Yes
Version(s): prior to 40.0.2214.91 ...
Solution: The vendor has issued a fix (40.0.2214.91)...
:fear::fear:
-
Chrome 40.0.2214.93 released
FYI...
Chrome 40.0.2214.93 released
- http://googlechromereleases.blogspot...update_26.html
Jan 26, 2015 - "The stable channel has been updated to 40.0.2214.93 for Windows, Mac and Linux. A full list of changes is available in the log*..."
* https://chromium.googlesource.com/ch...fuller&n=10000
:fear:
-
Chrome 40.0.2214.111 released
FYI...
Chrome 40.0.2214.111 released
- http://googlechromereleases.blogspot...el-update.html
Feb 5, 2015 - "The stable channel has been updated to 40.0.2214.111 for Windows, Mac and Linux...
Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven't yet fixed.
This update includes 11 security fixes..."
___
- http://www.securitytracker.com/id/1031709
CVE Reference: CVE-2015-1209, CVE-2015-1210, CVE-2015-1211, CVE-2015-1212
Feb 6 2015
Impact: Disclosure of system information, Execution of arbitrary code via network, User access via network
Fix Available: Yes Vendor Confirmed: Yes
Version(s): prior to 40.0.2214.111 ...
Solution: The vendor has issued a fix (40.0.2214.111).
The vendor's advisory is available at:
- http://googlechromereleases.blogspot...el-update.html
:fear::fear:
-
Chrome 40.0.2214.115 released
FYI...
Chrome 40.0.2214.115 released
- http://googlechromereleases.blogspot...update_19.html
Feb 19, 2015 - "The stable channel has been updated to 40.0.2214.115 for Windows, Mac and Linux. A full list of changes is available in the log..."
:fear:
-
Chrome 41.0.2272.76 released
FYI...
Chrome 41.0.2272.76 released
- http://googlechromereleases.blogspot...el-update.html
Mar 3, 2015 - "The Chrome team is delighted to announce the promotion of Chrome 41 to the stable channel for Windows, Mac and Linux. Chrome 41.0.2272.76 contains a number of fixes and improvements, including:
A number of new apps/extension APIs
Lots of under the hood changes for stability and performance
This update includes -51- security fixes..."
___
CVE Reference(s): CVE-2015-1212, CVE-2015-1213, CVE-2015-1214, CVE-2015-1215, CVE-2015-1216, CVE-2015-1217, CVE-2015-1218, CVE-2015-1219, CVE-2015-1220, CVE-2015-1221, CVE-2015-1222, CVE-2015-1223, CVE-2015-1224, CVE-2015-1225, CVE-2015-1226, CVE-2015-1227, CVE-2015-1228, CVE-2015-1229, CVE-2015-1230, CVE-2015-1231
:fear::fear:
-
Chrome 41.0.2272.101 released
FYI...
Chrome 41.0.2272.101 released
- http://googlechromereleases.blogspot...update_19.html
March 19, 2015 - "The stable channel has been updated to 41.0.2272.101 for Windows, Mac and Linux. A partial list of changes is available in the log..."
___
All four major browsers take a stomping at Pwn2Own...
- http://arstechnica.com/security/2015...g-competition/
Mar 20, 2015 - "The annual Pwn2Own hacking competition wrapped up its 2015 event in Vancouver with another banner year, paying $442,000 for 21 critical bugs in all four major browsers, as well as Windows, Adobe Flash, and Adobe Reader..."
:fear::fear:
-
Chrome 41.0.2272.118 released
FYI...
Chrome 41.0.2272.118 released
- http://googlechromereleases.blogspot...el-update.html
Apr 1, 2015 - "The stable channel has been updated to 41.0.2272.118 for Windows, Mac and Linux. A partial list of changes is available in the log... This update includes 4 security fixes..."
___
- http://www.securitytracker.com/id/1032012
CVE Reference:
- https://web.nvd.nist.gov/view/vuln/d...=CVE-2015-1233 - 7.5 (HIGH)
- https://web.nvd.nist.gov/view/vuln/d...=CVE-2015-1234 - 6.8
Apr 2 2015
Impact: Execution of arbitrary code via network, User access via network
Fix Available: Yes Vendor Confirmed: Yes ...
Solution: The vendor has issued a fix (41.0.2272.118).
:fear:
-
Chrome 42.0.2311.90 released
FYI...
Chrome 42.0.2311.90 released
- http://googlechromereleases.blogspot...update_14.html
April 14, 2015 - "The Chrome team is overjoyed to announce the promotion of Chrome 42 to the stable channel for Windows, Mac and Linux. Chrome 42.0.2311.90 contains a number of fixes and improvements... This update includes -45- security fixes..."
:fear::fear: