Chrome Releases
Release updates from the Chrome team
Dev Channel Update for Desktop
Wednesday, October 18, 2017
The dev channel has been updated to 63.0.3239.9 for Windows,
M
ac and
Linux.
A partial list of changes is available in the
log
. Interested in
switching
release channels? Find out
how
. If you find a new issue, please let us know by
filing a bug
. The
community help forum
is also a great place to reach out for help or learn about common issues.
Krishna Govind
Google Chrome
Dev Channel Update for Chrome OS
Tuesday, October 17, 2017
The Dev channel has been updated to 63.0.3239.7 (Platform version: 10032.4.0) for most Chrome OS devices. This build contains a number of bug fixes, security updates and feature enhancements.
A list of changes can be found
here
.
If you find new issues, please let us know by visiting our
forum
or
filing a bug
. Interested in switching channels?
Find out how
. You can submit feedback using ‘Report an issue...’ in the Chrome menu (3 vertical dots in the upper right corner of the browser).
Grace Kihumba
Google Chrome
Stable Channel Update for Desktop
Tuesday, October 17, 2017
The Chrome team is delighted to announce the promotion of Chrome 62 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks.
Chrome 62.0.3202.62 contains a number of fixes and improvements -- a list of changes is available in the
log
. Watch out for upcoming
Chrome
and
Chromium
blog posts about new features and big efforts delivered in 62.
Security Fixes and Rewards
Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.
This update includes
35
security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the
Chrome Security Page
for more information.
[$7500+$1337][
762930
]
High
CVE-2017-5124: UXSS with MHTML.
Reported by Anonymous on 2017-09-07
[$5000][
749147
]
High
CVE-2017-5125: Heap overflow in Skia.
Reported by Anonymous on 2017-07-26
[$3000][
760455
]
High
CVE-2017-5126: Use after free in PDFium.
Reported by Luật Nguyễn (@l4wio) of KeenLab, Tencent on 2017-08-30
[$3000][
765384
]
High
CVE-2017-5127: Use after free in PDFium.
Reported by Luật Nguyễn (@l4wio) of KeenLab, Tencent on 2017-09-14
[$3000][
765469
]
High
CVE-2017-5128: Heap overflow in WebGL.
Reported by Omair on 2017-09-14
[$3000][
765495
]
High
CVE-2017-5129: Use after free in WebAudio.
Reported by Omair on 2017-09-15
[$3000][
718858
]
High
CVE-2017-5132: Incorrect stack manipulation in WebAssembly.
Reported by Gaurav Dewan (@007gauravdewan) of Adobe Systems India Pvt. Ltd. on 2017-05-05
[$N/A][
722079
]
High
CVE-2017-5130: Heap overflow in libxml2.
Reported by Pranjal Jumde (@pjumde) on 2017-05-14
[$5000][
744109
]
Medium
CVE-2017-5131: Out of bounds write in Skia.
Reported by Anonymous on 2017-07-16
[$2000][
762106
]
Medium
CVE-2017-5133: Out of bounds write in Skia.
Reported by Aleksandar Nikolic of Cisco Talos on 2017-09-05
[$1000][
752003
]
Medium
CVE-2017-15386: UI spoofing in Blink.
Reported by WenXu Wu of Tencent's Xuanwu Lab on 2017-08-03
[$1000][
756040
]
Medium
CVE-2017-15387: Content security bypass.
Reported by Jun Kokatsu (@shhnjk) on 2017-08-16
[$1000][
756563
]
Medium
CVE-2017-15388: Out of bounds read in Skia.
Reported by Kushal Arvind Shah of Fortinet's FortiGuard Labs on 2017-08-17
[$500][
739621
]
Medium
CVE-2017-15389: URL spoofing in OmniBox.
Reported by xisigr of Tencent's Xuanwu Lab on 2017-07-06
[$500][
750239
]
Medium
CVE-2017-15390: URL spoofing in OmniBox.
Reported by Haosheng Wang (@gnehsoah) on 2017-07-28
[$500][
598265
]
Low
CVE-2017-15391: Extension limitation bypass in Extensions.
Reported by João Lucas Melo Brasio (whitehathackers.com.br) on 2016-03-28
[$N/A][
714401
]
Low
CVE-2017-15392: Incorrect registry key handling in PlatformIntegration.
Reported by Xiaoyin Liu (@general_nfs) on 2017-04-22
[$N/A][
732751
]
Low
CVE-2017-15393: Referrer leak in Devtools.
Reported by Svyat Mitin on 2017-06-13
[$N/A][
745580
]
Low
CVE-2017-15394: URL spoofing in extensions UI.
Reported by Sam @sudosammy on 2017-07-18
[$N/A][
759457
]
Low
CVE-2017-15395: Null pointer dereference in ImageCapture.
Reported by Johannes Bergman (johberlvi@) on 2017-08-28
We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.
As usual, our ongoing internal security work was responsible for a wide range of fixes:
[
775550
] Various fixes from internal audits, fuzzing and other initiatives
Many of our security bugs are detected using
AddressSanitizer
,
MemorySanitizer
,
UndefinedBehaviorSanitizer
,
Control Flow Integrity
,
libFuzzer
, or
AFL
.
Interested in switching release channels?
Find out how
. If you find a new issue, please let us know by
filing a bug
. The
community help forum
is also a great place to reach out for help or learn about common issues.
Abdul Syed
Google Chrome
Beta Channel Update for Desktop
Tuesday, October 17, 2017
The beta channel has been updated to 62.0.3202.62
for Windows, Mac, and Linux.
A partial list of changes is available in the
log
. Interested in
switching
release channels? Find out
how
. If you find a new issue, please let us know by
filing a bug
. The
community help forum
is also a great place to reach out for help or learn about common issues.
Abdul Syed
Google Chrome
Dev Channel Update for Chrome OS
Friday, October 13, 2017
The Dev channel has been updated to 63.0.3236.0 (Platform version: 10025.0.0) for most Chrome OS devices. This build contains a number of bug fixes, security updates and feature enhancements.
A list of changes can be found
here
.
If you find new issues, please let us know by visiting our
forum
or
filing a bug
. Interested in switching channels?
Find out how
. You can submit feedback using ‘Report an issue...’ in the Chrome menu (3 vertical dots in the upper right corner of the browser).
Grace Kihumba
Google Chrome
Beta Channel Update for Desktop
Wednesday, October 11, 2017
The beta channel has been updated to 62.0.3202.52
for Windows, Mac, and Linux.
A partial list of changes is available in the
log
. Interested in
switching
release channels? Find out
how
. If you find a new issue, please let us know by
filing a bug
. The
community help forum
is also a great place to reach out for help or learn about common issues.
Abdul Syed
Google Chrome
Stable Channel Updates for Chrome OS
Tuesday, October 10, 2017
The Stable channel has been updated to 61.0.3163.120 (Platform version: 9765.81.0) for most Chrome OS devices. This build contains a number of bug fixes and a security TPM firmware update to address RSA key generation weakness in Infineon TPM firmware, more details
here
.
Systems will be receiving updates over the next several days.
If you find new issues, please let us know by visiting our
forum
or
filing a bug
. Interested in switching channels?
Find out how
. You can submit feedback using ‘Report an issue...’ in the Chrome menu (3 vertical dots in the upper right corner of the browser).
Josafat Garcia
Google Chrome
Dev Channel Update for Desktop
Tuesday, October 10, 2017
The dev channel has been updated to 63.0.3236.0 for Windows,
M
ac and 63.0.3236.7 for
Linux.
A partial list of changes is available in the
log
. Interested in
switching
release channels? Find out
how
. If you find a new issue, please let us know by
filing a bug
. The
community help forum
is also a great place to reach out for help or learn about common issues.
Krishna Govind
Google Chrome
Beta Channel Update for Chrome OS
Tuesday, October 10, 2017
The Beta channel has been updated to 62.0.3202.43 (Platform version: 9901.35.1
) for most Chrome OS devices. This build contains a number of bug fixes, security updates and feature enhancements.
If you find new issues, please let us know by visiting our
forum
or
filing a bug
. Interested in switching channels?
Find out how
. You can submit feedback using ‘Report an issue...’ in the Chrome menu (3 vertical dots in the upper right corner of the browser).
Bernie Thompson
Google Chrome
Beta Channel Updates for Chrome OS
Friday, October 6, 2017
The Beta channel has been updated to 61.0.3163.117 (Platform version: 9765.79.0
) for most Chrome OS devices. This build contains a number of bug fixes, security updates and feature enhancements.
A list of changes can be found
here
.
If you find new issues, please let us know by visiting our
forum
or
filing a bug
. Interested in switching channels?
Find out how
. You can submit feedback using ‘Report an issue...’ in the Chrome menu (3 vertical dots in the upper right corner of the browser).
Josafat Garcia
Google Chrome
Labels
Admin Console
Android WebView
Beta
Beta updates
chrome
Chrome Beta for Android
Chrome Dev for Android
Chrome for Android
Chrome for iOS
Chrome OS
Chrome OS Management
Chromecast Update
dev update
Dev updates
Flash Player update
Stable updates
Archive
2017
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2016
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2015
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2014
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2013
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2012
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2011
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2010
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2009
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2008
Dec
Nov
Oct
Sep
Feed
Google
on
Follow @googlechrome
Follow
Follow