Google Chrome updates

AplusWebMaster

AplusWebMaster

New member
Advisor Team
Chrome v17.0.963.83 released

FYI...

Chrome v17.0.963.83 released
- https://secunia.com/advisories/48512/
Release Date: 2012-03-22
Criticality level: Highly critical
Impact: Security Bypass, System access
Where: From remote
CVE Reference(s): CVE-2011-3045, CVE-2011-3050, CVE-2011-3051, CVE-2011-3052, CVE-2011-3053, CVE-2011-3054, CVE-2011-3055, CVE-2011-3056, CVE-2011-3057
Solution: Update to version 17.0.963.83.
Original Advisory:
http://googlechromereleases.blogspot.com/2012/03/stable-channel-update_21.html

Related: https://secunia.com/advisories/48485/
"... update for libpng..."

- http://www.securitytracker.com/id/1026841
Mar 23 2012

:fear::fear:
 
Last edited:
Chrome v18.0.1025.142 released

FYI...

Chrome v18.0.1025.142 released
- https://secunia.com/advisories/48618/
Release Date: 2012-03-29
Criticality level: Highly critical
Impact: Unknown, Cross Site Scripting, Spoofing, System access
Where: From remote...
CVE Reference(s): CVE-2011-3057, CVE-2011-3058, CVE-2011-3059, CVE-2011-3060, CVE-2011-3061, CVE-2011-3062, CVE-2011-3063, CVE-2011-3064, CVE-2011-3065, CVE-2012-0772, CVE-2012-0773
Solution: Upgrade to version 18.0.1025.142.
Original Advisory:
http://googlechromereleases.blogspot.com/2012/03/stable-channel-release-and-beta-channel.html
"... This version also contains the new Adobe Flash..."

:fear::fear:
 
Chrome v18.0.1025.151 released

FYI...

Chrome v18.0.1025.151 released
- https://secunia.com/advisories/48732/
Release Date: 2012-04-06
Criticality level: Highly critical
Impact: Unknown, Security Bypass, System access
Where: From remote...
Solution: Update to version 18.0.1025.151.
Original Advisory:
http://googlechromereleases.blogspot.com/2012/04/stable-and-beta-channel-updates.html

- http://www.securitytracker.com/id/1026892
Date: Apr 5 2012
CVE Reference: CVE-2011-3066, CVE-2011-3067, CVE-2011-3068, CVE-2011-3069, CVE-2011-3070, CVE-2011-3071, CVE-2011-3072, CVE-2011-3073, CVE-2011-3074, CVE-2011-3075, CVE-2011-3076, CVE-2011-3077
Impact: Disclosure of user information, Execution of arbitrary code via network, Modification of user information, User access via network
Fix Available: Yes Vendor Confirmed: Yes
Version(s): prior to 18.0.1025.151...

:fear:
 
Chrome v18.0.1025.162 released

FYI...

Chrome v18.0.1025.162 released
- http://googlechromereleases.blogspot.com/search/label/Stable updates
April 12, 2012 - "The Chrome Stable channel has been updated to 18.0.1025.162 on on Windows, Mac, Linux and Chrome Frame. This release fixes issues including:
Windows:
• Facebook page hangs after a while (Issue: 121141)
• black screen on Hybrid Graphics system with GPU accelerated compositing enabled (Issue: 117371)
Mac:
• HTML5 audio doesn't work on some Mac computers (Issue: 109441)..."

:fear::fear:
 
Chrome v18.0.1025.168 released

FYI...

Chrome v18.0.1025.168 released
- https://secunia.com/advisories/48992/
Release Date: 2012-05-01
Criticality level: Highly critical
Impact: Unknown, System access
Where: From remote
CVE Reference(s):
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3078 - 10.0 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3079 - 10.0 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3080 - 7.5 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3081 - 7.5 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-1521 - 10.0 (HIGH)
... vulnerabilities are reported in versions prior to 18.0.1025.168.
Solution: Update to version 18.0.1025.168...

> http://googlechromereleases.blogspot.com/search/label/Stable updates
April 30, 2012

:fear::spider:
 
Last edited:
Chrome v19.0.1084.46 released

FYI...

Chrome v19.0.1084.46 released
- https://secunia.com/advisories/49194/
Release Date: 2012-05-16
Criticality level: Highly critical
... vulnerabilities are reported in versions prior to 19.0.1084.46.
Solution: Upgrade to version 19.0.1084.46.
Original Advisory:
http://googlechromereleases.blogspot.com/2012/05/stable-channel-update.html

- http://www.securitytracker.com/id/1027067
CVE Reference:
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3083 - 5.0
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3084 - 7.5 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3085 - 5.0
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3086 - 10.0 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3087 - 10.0 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3088 - 5.0
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3089 - 10.0 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3090 - 7.6 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3091 - 7.5 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3092 - 7.5 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3093 - 5.0
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3094 - 5.0
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3095 - 7.5 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3096 - 7.5 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3097 - 7.5 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3098 - 7.2 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3099 - 7.5 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3100 - 5.0
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3101 - 10.0 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3102 - 7.5 (HIGH)
May 16 2012
Impact: Execution of arbitrary code via network, User access via network
A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.
Version(s): prior to 19 ...

:fear::fear:
 
Last edited:
Chrome v19.0.1084.52 released

FYI...

Chrome v19.0.1084.52 released
- https://secunia.com/advisories/49277/
Release Date: 2012-05-24
Criticality level: Highly critical
Impact: Unknown, System access
Where: From remote
CVE Reference(s): CVE-2011-3103, CVE-2011-3104, CVE-2011-3105, CVE-2011-3106, CVE-2011-3107, CVE-2011-3108, CVE-2011-3109, CVE-2011-3110, CVE-2011-3111, CVE-2011-3112, CVE-2011-3113, CVE-2011-3114, CVE-2011-3115
... vulnerabilities are reported in versions prior to 19.0.1084.52.
Solution: Update to version 19.0.1084.52.
Original Advisory:
http://googlechromereleases.blogspot.com/2012/05/stable-channel-update_23.html

- http://www.securitytracker.com/id/1027098
May 24 2012
Impact: Execution of arbitrary code via network, User access via network
Version(s): prior to 19.0.1084.52 ...

:fear::fear:
 
Last edited:
Chrome v20.0.1132.43 released

FYI...

Chrome v20.0.1132.43 released
- https://secunia.com/advisories/49724/
Release Date: 2012-06-27
Criticality level: Highly critical
Impact: Unknown, Security Bypass, Exposure of sensitive information, System access
Where: From remote ...
CVE Reference(s): CVE-2012-2764, CVE-2012-2815, CVE-2012-2816, CVE-2012-2817, CVE-2012-2818, CVE-2012-2819, CVE-2012-2820, CVE-2012-2821, CVE-2012-2822, CVE-2012-2823, CVE-2012-2824, CVE-2012-2826, CVE-2012-2827, CVE-2012-2828, CVE-2012-2829, CVE-2012-2830, CVE-2012-2831, CVE-2012-2832, CVE-2012-2833, CVE-2012-2834
Solution: Upgrade to version 20.0.1132.43.
Original Advisory:
- http://googlechromereleases.blogspot.com/2012/06/stable-channel-update_26.html

:fear::fear:
 
Last edited:
Chrome v20.0.1132.57 released

FYI...

Chrome v20.0.1132.57 released
- http://googlechromereleases.blogspot.com/search/label/Stable updates
July 11, 2012 - "The Stable channel has been updated to 20.0.1132.57 for Windows, Mac, Linux, and Chrome Frame. Along with below mentioned security fixes, this build contains an update to Flash player, v8 (3.10.8.20) and couple of stability/bug fixes...
High CVE-2012-2842: Use-after-free in counter handling...
High CVE-2012-2843: Use-after-free in layout height tracking...
High CVE-2012-2844: Bad object access with JavaScript in PDF..."

- https://secunia.com/advisories/49906/
Release Date: 2012-07-12
Criticality level: Highly critical
Impact: System access
Where: From remote
Solution: Update to version 20.0.1132.57.
Original Advisory: Google:
http://googlechromereleases.blogspot.com/2012/07/stable-channel-update.html

:fear::fear:
 
Last edited:
Chrome v21.0.1180.60 released

FYI...

Chrome v21.0.1180.60 released
- https://secunia.com/advisories/50105/
Release Date: 2012-08-01
Criticality level: Highly critical
Impact: Security Bypass, System access
Where: From remote...
CVE Reference(s): CVE-2012-2846, CVE-2012-2847, CVE-2012-2848, CVE-2012-2849, CVE-2012-2850, CVE-2012-2851, CVE-2012-2852, CVE-2012-2853, CVE-2012-2854, CVE-2012-2855, CVE-2012-2856, CVE-2012-2857, CVE-2012-2858, CVE-2012-2859, CVE-2012-2860
Original Advisory:
http://googlechromereleases.blogspot.com/2012/07/stable-channel-release.html
"... release of Chrome 21 to the Stable Channel. 21.0.1180.57 for Mac and Linux. 21.0.1180.60 for Windows and Chrome Frame..."

- http://h-online.com/-1657169
1 August 2012

:fear::spider:
 
Last edited:
Chrome v21.0.1180.75 released

FYI...

Chrome v21.0.1180.75 released
- https://secunia.com/advisories/50222/
Release Date: 2012-08-09
Criticality level: Highly critical
Impact: System access
Where: From remote
CVE Reference(s): CVE-2012-2862, CVE-2012-2863
... vulnerabilities are reported in versions prior to 21.0.1180.75.
Solution: Update to version 21.0.1180.75.
Original Advisory:
http://googlechromereleases.blogspot.com/2012/08/stable-channel-update.html
Security fixes...
• [136643] [137721] [137957] High CVE-2012-2862: Use-after-free in PDF viewer...
• [136968] [137361] High CVE-2012-2863: Out-of-bounds writes in PDF viewer...

:fear::fear:
 
Chrome v21.0.1180.79 released

FYI...

Chrome v21.0.1180.79 released
- https://secunia.com/advisories/50286/
Release Date: 2012-08-14
Criticality level: Highly critical
Impact: System access
Where: From remote...
CVE Reference: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-1535
... vulnerability is caused due to the application bundling a vulnerable version of Adobe Flash Player.
For more information: https://secunia.com/SA50285/
Solution: Update to version 21.0.1180.79 for Mac, Linux, Windows, and Chrome Frame.
Original Advisory: Google:
http://googlechromereleases.blogspot.dk/2012/08/stable-channel-update_14.html
August 14, 2012 - "The Stable channel has been updated to 21.0.1180.79 for Mac, Linux, Windows and Chrome Frame. This build fixes a security issue with Adobe Flash..."

>> http://forums.spybot.info/showpost.php?p=429696&postcount=80

:fear:
 
Chrome v21.0.1180.83 released

FYI...

Chrome v21.0.1180.83 released
- https://secunia.com/advisories/50356/
Release Date: 2012-08-22
Criticality level: Highly critical
Impact: Exposure of sensitive information, System access
Where: From remote
... vulnerabilities are caused due to the application bundling a vulnerable version of Adobe Flash Player.
For more information: https://secunia.com/SA50354/
Solution: Update to a fixed version...
Original Advisory:
http://googlechromereleases.blogspot.dk/2012/08/stable-channel-update_21.html
August 21, 2012 - "The Stable channel has been updated to 21.0.1180.81 for Linux, 21.0.1180.83 for Windows and Chrome Frame and both Beta and Stable channels have been updated to 21.0.1180.82 for Mac...
These builds also have a new version of Flash with security and other fixes..."

:fear:
 
Chrome v21.0.1180.89 released

FYI...

Chrome v21.0.1180.89 released
- https://secunia.com/advisories/50447/
Release Date: 2012-08-31
Criticality level: Highly critical
Impact: Unknown, Cross Site Scripting, System access
Where: From remote...
CVE Reference(s): CVE-2012-2865, CVE-2012-2866, CVE-2012-2867, CVE-2012-2868, CVE-2012-2869, CVE-2012-2870, CVE-2012-2871, CVE-2012-2872
... vulnerabilities are reported in versions prior to 21.0.1180.89.
Solution: Update to version 21.0.1180.89.
Original Advisory:
http://googlechromereleases.blogspot.com/2012/08/stable-channel-update_30.html
___

- http://h-online.com/-1696236
31 August 2012

:fear:
 
Last edited:
Chrome v22.0.1229.79 released

FYI...

Chrome v22.0.1229.79 released
- https://secunia.com/advisories/50759/
Release Date: 2012-09-26
Criticality level: Highly critical
Impact: Unknown, Security Bypass, Cross Site Scripting, System access
Where: From remote ...
CVE Reference(s): CVE-2012-2874, CVE-2012-2875, CVE-2012-2876, CVE-2012-2877, CVE-2012-2878, CVE-2012-2879, CVE-2012-2880, CVE-2012-2881, CVE-2012-2882, CVE-2012-2883, CVE-2012-2884, CVE-2012-2885, CVE-2012-2886, CVE-2012-2887, CVE-2012-2888, CVE-2012-2889, CVE-2012-2890, CVE-2012-2891, CVE-2012-2892, CVE-2012-2893, CVE-2012-2894, CVE-2012-2895, CVE-2012-2896
Solution: Upgrade to version 22.0.1229.79.
Original Advisory: Google:
http://googlechromereleases.blogspot.dk/2012/09/stable-channel-update_25.html
___

Security fixes dominate Chrome 22
- http://h-online.com/-1717660
26 Sep 2012 - "... closes more than 40 security holes, of which one is considered to be critical and 19 are rated as 'high severity'..."

:fear:
 
Last edited:
Chrome v22.0.1229.92 released

FYI...

Chrome v22.0.1229.92 released
- https://secunia.com/advisories/50872/
Release Date: 2012-10-09
Criticality level: Highly critical
Impact: System access
Where: From remote
Solution: Update to version 22.0.1229.92.
Original Advisory: http://googlechromereleases.blogspot.dk/2012/10/stable-channel-update.html
October 8, 2012 - "... This update contains a number of stability fixes, including an issue with multiple profiles on Mac OS X 10.8.2... These builds also have a new version of Flash with security and other fixes. More information can be found here*..."
* http://helpx.adobe.com/flash-player/release-note/fp_114_air_34_release_notes.html#fixed_issues

- http://www.securitytracker.com/id/1027617
CVE Reference: CVE-2012-2900, CVE-2012-5108, CVE-2012-5109, CVE-2012-5110, CVE-2012-5111
Oct 8 2012
Version(s): prior to 22.0.1229.92
Impact: A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system...
Solution: The vendor has issued a fix (22.0.1229.92).

:fear:
 
Chrome v22.0.1229.94 released

FYI...

Chrome v22.0.1229.94 released
- https://secunia.com/advisories/50954/
Release Date: 2012-10-11
Criticality level: Highly critical
Impact: Security Bypass, System access
Where: From remote
CVE Reference: CVE-2012-5112
Solution: Update to version 22.0.1229.94.
Original Advisory: Google:
- http://googlechromereleases.blogspot.com/search/label/Stable updates
Oct 10, 2012

- http://www.securitytracker.com/id/1027644
CVE Reference: CVE-2012-5112
Oct 11 2012
Impact: A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.
Solution: The vendor has issued a fix (22.0.1229.94).

- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-5112 - 10.0 (HIGH)
- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-5376 - 10.0 (HIGH)

:fear:
 
Last edited:
Chrome v23.0.1271.64 released

FYI...

Chrome v23.0.1271.64 released
- http://googlechromereleases.blogspot.com/search/label/Stable updates
Nov 6, 2012 - "... 23.0.1271.64 for Windows, Mac, Linux, and Chrome Frame. Chrome 23 contains a number of new features including GPU accelerated video decoding on Windows and easier website permissions... referenced bugs may be kept private until a majority of our users are up to date with the fix... This version also has a new Adobe Flash..."
___

- https://secunia.com/advisories/51210/
Release Date: 2012-11-07
Criticality level: Highly critical
Impact: Security Bypass, System access
Where: From remote
CVE Reference(s): CVE-2012-5115, CVE-2012-5116, CVE-2012-5117, CVE-2012-5118, CVE-2012-5119, CVE-2012-5120, CVE-2012-5121, CVE-2012-5122, CVE-2012-5123, CVE-2012-5124, CVE-2012-5125, CVE-2012-5126, CVE-2012-5127, CVE-2012-5128, CVE-2012-5274, CVE-2012-5275, CVE-2012-5276, CVE-2012-5277, CVE-2012-5278, CVE-2012-5279, CVE-2012-5280
Solution: Upgrade to version 23.0.1271.64.
Original Advisory: Google:
http://googlechromereleases.blogspot.dk/2012/11/stable-channel-release-and-beta-channel.html

:fear::fear:
 
Last edited:
You must log in or register to reply here.
Back
Top