Print

Print


To all IT Professionals,

 

https://www.us-cert.gov/ncas/current-activity/2013/10/17/Google-Releases-Goo
gle-Chrome-3001599101

 

Google has released Google Chrome 30.0.1599.101 for Windows, Mac, Linux and
Chrome Frame operating systems to address multiple vulnerabilities. These
vulnerabilities could allow a remote attacker to cause a denial-of-service
condition or trigger multiple conflicting uses of the same object.

US-CERT encourages users and administrators to review the Google Chrome
Release blog entry
<https://www.us-cert.gov/redirect?url=http%3A%2F%2Fgooglechromereleases.blog
spot.com%2Fsearch%2Flabel%2FStable%2520updates>  and update to Chrome
30.0.1599.101.

 

 

Google Chrome Release:

 

http://googlechromereleases.blogspot.com/search/label/Stable%20updates

 

This update includes
<https://code.google.com/p/chromium/issues/list?can=1&q=type%3Abug-security+
label%3Arelease-1-m30+-security_severity%3DNone> 5 security fixes. Below, we
highlight fixes that were either contributed by external researchers or
particularly interesting. Please see the
<http://sites.google.com/a/chromium.org/dev/Home/chromium-security> Chromium
security page for more information. 





High CVE-2013-2925: Use after free in XHR. Credit to Atte Kettunen of OUSPG
<https://code.google.com/u/117154691211413633534/> .

High CVE-2013-2926: Use after free in editing. Credit to cloudfuzzer
<https://code.google.com/u/117154691211413633534/> .

High CVE-2013-2927: Use after free in forms. Credit to cloudfuzzer
<https://code.google.com/u/117154691211413633534/> .