Chrome Releases: Stable Channel Update

Stable Channel Update

Tuesday, February 9, 2016

The stable channel has been updated to 48.0.2564.109 for Windows, Mac, and Linux.
Security Fixes and Rewards

Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.

This update includes 6 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chromium security page for more information.

[$7500][546677] High CVE-2016-1622: Same-origin bypass in Extensions. Credit to anonymous.

[$7500][577105] High CVE-2016-1623: Same-origin bypass in DOM. Credit to Mariusz Mlynski.

[$TBD][583607] High CVE-2016-1624: Buffer overflow in Brotli. Credit to Luke Li and Jonathan Metzman.

[$1000][509313] Medium CVE-2016-1625: Navigation bypass in Chrome Instant. Credit to Jann Horn.

[571480] Medium CVE-2016-1626: Out-of-bounds read in PDFium. Credit to anonymous, working with HP's Zero Day Initiative.
[571479] Medium CVE-2016-1628: Out-of-bounds read in PDFium. Credit to anonymous, working with HP's Zero Day Initiative.

As usual, our ongoing internal security work:

[585517] CVE-2016-1627: Various fixes from internal audits, fuzzing and other initiatives.

Many of our security bugs are detected using AddressSanitizer, MemorySanitizer or Control Flow Integrity.
A list of changes is available in the log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.

Krishna Govind

Google Chrome

10 comments :

Anthony Voutas said...: I'm on MacOSX on 48.0.2564.103 and Chrome doesn't appear to have an update for me.

Am I doing something wrong?; 4:42 PM, February 09, 2016
Victor said...: Email page location still doesn't work. Latest Mac OS X and using gmail.; 5:16 PM, February 09, 2016
Andi said...: And again you are not being a good open source citizen by not publishing distribution friendly tarballs.; 2:22 AM, February 10, 2016
William said...: Still missing the chromium source tarballs...; 1:32 PM, February 11, 2016
Anonymous said...: Does this release fix the problems caused by the crashsafari site?; 3:00 PM, February 12, 2016
AdT said...: The browser games have problems with ram memmory when the games are loading the browser.
Ad.; 11:43 PM, February 12, 2016
Samiur Rahman said...: I can't update my browser.; 2:27 AM, February 13, 2016
Siddharth Guj said...: Home page not opening... every time it is showing the File Index of Chrome with 48.0.2564.109; 6:53 AM, February 13, 2016
Megan Ryan said...: Hi there I am just reporting about Google Chrome sometimes refreshing my tabs BY ITSELF. I don't know if its because of the newest update OR IF THERE IS A BUG in your server/browser, BUT I know I didn't experience the weird refresh bug after last week's update. IT STARTED THIS morning when I had a few tabs open AND THIS afternoon. I researched this too and others are facing this same problem-YOU BETTER FIX THIS ANNOYING REFRESH thingy when tabs are left alone for so long EVEN THOSE WITH videos in them because I like watching shows and multi-tasking between tabs. SO please fix it ASAP Post haste.; 7:36 PM, February 17, 2016
Unknown said...: Chrome started to AUTO REFRESH tabs!!! It is serious BUG, because I have some pages, which make actions on load (without POST of data), like manipulations with database, sending emails, SMS, etc.; 6:20 AM, February 18, 2016

Chrome Releases

Stable Channel Update

10 comments :

Labels

Archive

Feed

Company-wide

Products

Developers