Security Fixes and Rewards
Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.
[$7500][590275] High CVE-2016-1652: Universal XSS in extension bindings. Credit to anonymous.
[$5000][589792] High CVE-2016-1653: Out-of-bounds write in V8. Credit to Choongwoo Han.
[591785] Medium CVE-2016-1651: Out-of-bounds read in Pdfium JPEG2000 decoding. Credit to kdot working with HP's Zero Day Initiative.
[$1500][589512] Medium CVE-2016-1654: Uninitialized memory read in media. Credit to Atte Kettunen of OUSPG.
[$1500][582008] Medium CVE-2016-1655: Use-after-free related to extensions. Credit to Rob Wu.
[$1000][567445] Medium CVE-2016-1657: Address bar spoofing. Credit to Luan Herrera.
[$500][573317] Low CVE-2016-1658: Potential leak of sensitive information to malicious extensions. Credit to Antonio Sanso (@asanso) of Adobe.
We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel. The total value of additional rewards and their recipients will updated here when all reports have gone through the reward panel.
As usual, our ongoing internal security work was responsible for a wide range of fixes:
[602697] CVE-2016-1659: Various fixes from internal audits, fuzzing and other initiatives.
Many of our security bugs are detected using AddressSanitizer, MemorySanitizer, Control Flow Integrity or LibFuzzer.
Follow
28 comments :
Just updated, no new design! Everything looks the same. I thought that the new design was supposed to be implemented in chrome 50. Someone please explain
I would love the return of the notification center :(
I think the new Google Chrome design based on material assign is only in version 51 final. But nothing prevents you from typing in the address bar about: // flags and press ctrl + F and type material designer and activate the function with material and chrome restart after pass to use the new designate.
Material Design work is launching in Chrome browser version 50 on Chrome OS. Fear not, the other platforms should be following soon.
On page of Chrome download says is for XP/Vista etc, but I can't install the version 50 on my Windows Vista. Why?!
I know many people have been anxious awaiting the return of the right click spellchecker menu - the unified spellchecker did never work for us multilingual writers. Perfect that it was back implemented! This is very valuable in terms of reduced work load for us. Great!!!
Shouldn't that logs link point to https://chromium.googlesource.com/chromium/src/+log/50.0.2661.66..50.0.2661.75?pretty=fuller&n=10000 ?
I guess it should be CVE-2016-1659 instead of CVE-2015-1659 (MS IE vulnerability) :)
Support of WinXP ended, OK. But Google for work, MSI Installer DO NOT CHECK target OS and deploy Chrome v50 to Windows XP. WTF?
Oscar, press CTRL/J and see the Downloads Manager. This one surely has a new design, right? It's the material design and I am not sure whether I like it because it really wastes a lot of space.
Thanks for stop xp supprt chorme now unistall you lost few users
I have just updated to this version, and now when I want to print, the option to print using the system (i.e. Windows) dialog box is no longer available. I usually print PDFs to read with two pages fitted on one sheet of paper, but that option is not available in the Chrome print dialog box. Is there any way to access the default system print dialog box from within Chrome? If not I will have to save my documents locally and open them with Acrobat Reader in order to print the way I want to - that's quite a laborious process.
What changed visually with this release? All of my preset windows overflow on to other screens, and all of my bookmarks no longer fit on the bookmark bar. Anyone?
「Google Chrome 50」の安定板リリースが株式市場に反映されていると思います。
http://www.youtube.com/user/lulu96993
May I ask where is the pinch to zoom flag. I have it disabled for my kiosk apps and now it is always enabled??
Vista Users, use the Chrome Standalone Offline Installer it still works with V50.
http://www.askvg.com/official-link-to-download-google-chrome-standalone-offline-installer/
An error occurred while checking for updates: Update check failed to start (error code 3: 0x80004002 -- system level).
I keep getting this when I try to update my Chrome for Window.
I've tried all the tips about using an uninstaller, and nothing works.
What else can I do?
I've tried manually going through my registry even.
Nothing.
Help!
Hi hello, ever since chrome updated to version 50.0.2661.75 m, it has been hogging a great deal of ram/cpu, and I mean A LOT. How much will depend on the site I am trying to use, but suffice to say it makes chrome (and my computer) really slow.
On top of that I can no longer Report Issues, whether through the key shortcut or chrome/help, I try and nothing happens. Is this just me?
hi, remote inspector with android device does not working in new chrome ver.50
Mac OS X download still is 49.0.2623.112 !!!
same problem as romeoh. remote inspector doesn't work. Please fix!!
Version 50.0.2661.75 m, now having problems loading some websites.
04.23.16 .
I just updated to Chrome Browser Version 50.0.2661.87 m (64-bit)
from within the browser itself on Windows 10 x64 Pro Insider Preview Evaluation Copy . Build 14279. rs1.
This should work fine on Windows 10 10586 th2 (stable ) on the other NTFS volume on this PC and the 3 other normally activated Windows 10 PC 's here.
^^^^ Seems to be working fine so far and looks the same otherwise.
It looks like it's still a memory hog with say 10 + browsing tabs open it may even be worse now ?
Sent from Windows 10 Pro Insider Preview Evaluation Copy . Build 14279. rs1
It's really nice post. I would like to thank you for the efforts you have made in sharing this.
SMO Company Jaipur, social media marketing agency Jaipur Corporate Designing services, Ecommerce solutions Agency in India, Jewelry Photography Jaipur, Latest Technical Information, Product Photography, Mobile application development jaipur
rekomendasi:NAGAQQ.COM | AGEN BANDARQ | BANDARQ ONLINE | ADUQ ONLINE | DOMINOQQ TERBAIK
NAGAQQ.COM | AGEN BANDARQ | BANDARQ ONLINE | ADUQ ONLINE | DOMINOQQ TERBAIK
Post a Comment