Chrome Releases
Release updates from the Chrome team
Chrome Stable Update
Wednesday, April 27, 2011
The Google Chrome team is happy to announce the arrival of Chrome 11.0.696.57 to the Stable Channel for Windows, Mac, Linux, and Chrome Frame. Chrome 11 contains some really great improvements including
speech input through HTML.
Security fixes and rewards:
Please see
the Chromium security page
for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix.
We’re pleased to associate a record $16,500 of rewards with this patch.
[
61502
]
High
CVE-2011-1303: Stale pointer in floating object handling.
Credit to Scott Hess of the Chromium development community and Martin Barbella.
[
70538
]
Low
CVE-2011-1304: Pop-up block bypass via plug-ins.
Credit to Chamal De Silva.
[Linux / Mac only] [
70589
]
Medium
CVE-2011-1305: Linked-list race in database handling.
Credit to Kostya Serebryany of the Chromium development community.
[$
500
] [
71586
]
Medium
CVE-2011-1434: Lack of thread safety in MIME handling.
Credit to Aki Helin.
[
72523
]
Medium
CVE-2011-1435: Bad extension with ‘tabs’ permission can capture local files.
Credit to Cole Snodgrass.
[Linux only] [
72910
]
Low
CVE-2011-1436: Possible browser crash due to bad interaction with X.
Credit to miaubiz.
[$
1000
] [
73526
]
High
CVE-2011-1437: Integer overflows in float rendering.
Credit to miaubiz.
[$
1000
] [
74653
]
High
CVE-2011-1438: Same origin policy violation with blobs.
Credit to kuzzcc.
[Linux only] [
74763
]
High
CVE-2011-1439: Prevent interference between renderer processes.
Credit to Julien Tinnes of the Google Security Team.
[$
1000
] [
75186
]
High
CVE-2011-1440: Use-after-free with <ruby> tag and CSS.
Credit to Jose A. Vazquez.
[$
500
] [
75347
]
High
CVE-2011-1441: Bad cast with floating select lists.
Credit to Michael Griffiths.
[$
1000
] [
75801
]
High
CVE-2011-1442: Corrupt node trees with mutation events.
Credit to Sergey Glazunov and wushi of team 509.
[$
1000
] [
76001
]
High
CVE-2011-1443: Stale pointers in layering code.
Credit to Martin Barbella.
[$
500
] [Linux only] [
76542
]
High
CVE-2011-1444: Race condition in sandbox launcher.
Credit to Dan Rosenberg.
[
76646
]
Medium
CVE-2011-1445: Out-of-bounds read in SVG.
Credit to wushi of team509.
[$
3000
] [
76666
] [
77507
] [
78031
]
High
CVE-2011-1446: Possible URL bar spoofs with navigation errors and interrupted loads.
Credit to kuzzcc.
[$
1000
] [
76966
]
High
CVE-2011-1447: Stale pointer in drop-down list handling.
Credit to miaubiz.
[$
1000
] [
77130
]
High
CVE-2011-1448: Stale pointer in height calculations.
Credit to wushi of team509.
[$
1000
] [
77346
]
High
CVE-2011-1449: Use-after-free in WebSockets.
Credit to Marek Majkowski.
[
77349
]
Low
CVE-2011-1450: Dangling pointers in file dialogs.
Credit to kuzzcc.
[$
2000
] [
77463
]
High
CVE-2011-1451: Dangling pointers in DOM id map.
Credit to Sergey Glazunov.
[$
500
] [
77786
]
Medium
CVE-2011-1452: URL bar spoof with redirect and manual reload.
Credit to Jordi Chancel.
[$
1500
] [
79199
]
High
CVE-2011-1454: Use-after-free in DOM id handling.
Credit to Sergey Glazunov.
[
79361
]
Medium
CVE-2011-1455: Out-of-bounds read with multipart-encoded PDF.
Credit to Eric Roman of the Chromium development community.
[
79364
]
High
CVE-2011-1456: Stale pointers with PDF forms.
Credit to Eric Roman of the Chromium development community.
We would also like to thank miaubiz, kuzzcc, Sławomir Błażek, Drew Yao and Braden Thomas of Apple Product Security and Christian Holler for working with us during the development cycle and helping prevent bugs from ever reaching the stable channel.
More on what's new at the
Official Chrome Blog
. You can find full details about the changes that are in Chrome 11 in the
SVN revision log
. If you find new issues, please let us know by
filing a bug
. Want to change to another Chrome release channel?
Find out how
.
Karen Grunberg
Google Chrome
Labels
Admin Console
43
Android WebView
19
Beta
21
Beta update
4
Beta updates
2011
chrome
15
Chrome Dev for Android
127
Chrome for Android
940
Chrome for iOS
371
Chrome for Meetings
5
Chrome OS
1149
Chrome OS Flex
22
Chrome OS Management
12
Chromecast Update
6
ChromeOS
207
ChromeOS Flex
204
Desktop Update
1102
dev update
266
Dev updates
1502
Early Stable Updates
49
Extended Stable updates
126
Flash Player update
5
Flex
1
Hangouts Meet hardware
5
LTS
87
stable
11
Stable updates
1231
Archive
2024
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2023
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2022
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2021
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2020
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2019
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2018
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2017
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2016
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2015
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2014
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2013
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2012
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2011
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2010
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2009
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2008
Dec
Nov
Oct
Sep
Give us feedback in our
Product Forums
.