Chrome Releases
Release updates from the Chrome team
Stable Channel Release and Beta Channel Update
Wednesday, March 28, 2012
The Chrome team is excited to announce the release of Chrome 18 to the Stable Channel for Windows, Mac, Linux and Chrome Frame. 18.0.1025.142 contains a number of new features including faster and fancier graphics.
More detailed updates are available on the
Chrome Blog
and the
Chromium Blog
.
Security fixes and rewards:
Please see
the Chromium security page
for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix.
Some of the items listed below represent the start of hardening measures based on study of the exploits submitted to the Pwnium competition.
[$
500
] [
109574
]
Medium
CVE-2011-3058: Bad interaction possibly leading to XSS in EUC-JP.
Credit to Masato Kinugawa.
[$
500
] [
112317
]
Medium
CVE-2011-3059: Out-of-bounds read in SVG text handling.
Credit to Arthur Gerkis.
[$
500
] [
114056
]
Medium
CVE-2011-3060: Out-of-bounds read in text fragment handling.
Credit to miaubiz.
[
116398
]
Medium
CVE-2011-3061: SPDY proxy certificate checking error.
Credit to Leonidas Kontothanassis of Google.
[
116524
]
High
CVE-2011-3062: Off-by-one in OpenType Sanitizer.
Credit to Mateusz Jurczyk of the Google Security Team.
[
117417
]
Low
CVE-2011-3063: Validate navigation requests from the renderer more carefully.
Credit to kuzzcc, Sergey Glazunov, PinkiePie and scarybeasts (Google Chrome Security Team).
[$
1000
] [
117471
]
High
CVE-2011-3064: Use-after-free in SVG clipping.
Credit to Atte Kettunen of OUSPG.
[$
1000
] [
117588
]
High
CVE-2011-3065: Memory corruption in Skia.
Credit to Omair.
[$
500
] [
117794
]
Medium
CVE-2011-3057: Invalid read in v8.
Credit to Christian Holler.
The bugs [
112317
], [
114056
] and [
117471
] were detected using
AddressSanitizer
.
We’d also like to thank miaubiz, Chamal de Silva, Atte Kettunen of OUSPG, Aki Helin of OUSPG and Arthur Gerkis for working with us during the development cycle and preventing security regressions from ever reaching the stable channel. $8000 of additional rewards were issued for this awesomeness.
This version also contains the new Adobe Flash release
, see
release notes
. Full details about what changes are in this release are available in the
SVN revision log
. Interested in hopping on the stable channel?
Find out how
. If you find a new issue, please let us know by
filing a bug
.
Karen Grunberg
Google Chrome
Labels
Admin Console
43
Android WebView
19
Beta
21
Beta update
4
Beta updates
2018
chrome
15
Chrome Dev for Android
129
Chrome for Android
946
Chrome for iOS
374
Chrome for Meetings
5
Chrome OS
1149
Chrome OS Flex
22
Chrome OS Management
12
Chromecast Update
6
ChromeOS
210
ChromeOS Flex
207
Desktop Update
1109
dev update
266
Dev updates
1506
Early Stable Updates
49
Extended Stable updates
127
Flash Player update
5
Flex
1
Hangouts Meet hardware
5
LTS
88
stable
11
Stable updates
1237
Archive
2024
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2023
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2022
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2021
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2020
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2019
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2018
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2017
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2016
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2015
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2014
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2013
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2012
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2011
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2010
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2009
Dec
Nov
Oct
Sep
Aug
Jul
Jun
May
Apr
Mar
Feb
Jan
2008
Dec
Nov
Oct
Sep
Give us feedback in our
Product Forums
.
