2015-03-04

Google、安定版「Chrome 41」をリリース。各種脆弱性の修正(51件)

Googleは、Windows、MacおよびLinux用の安定版「Chrome 41.0.2272.76」最新バージョンをリリースしました。


今回のバージョンアップでは、メジャーアップデートに関わらず、脆弱性の修正(51件)がメインで、大きな機能追加などは無い模様です。脆弱性の修正の内訳は、深刻度が4段階中上から2番目の「High」が13件、3番目の“Medium”が6件となっています。修正内容としては、アプリ及び拡張機能のためのAPIの拡充および安定性とパフォーマンスについての修正・改善ということのようです。



新たな機能や改善点


[456516] High CVE-2015-1212: Out-of-bounds write in media. Credit to anonymous.
[448423] High CVE-2015-1213: Out-of-bounds write in skia filters. Credit to cloudfuzzer.
[445810] High CVE-2015-1214: Out-of-bounds write in skia filters. Credit to cloudfuzzer.
[445809] High CVE-2015-1215: Out-of-bounds write in skia filters. Credit to cloudfuzzer.
[454954] High CVE-2015-1216: Use-after-free in v8 bindings. Credit to anonymous.
[456192] High CVE-2015-1217: Type confusion in v8 bindings. Credit to anonymous.
[456059] High CVE-2015-1218: Use-after-free in dom. Credit to cloudfuzzer.
[446164] High CVE-2015-1219: Integer overflow in webgl. Credit to Chen Zhang (demi6od) of NSFOCUS Security Team.
[437651] High CVE-2015-1220: Use-after-free in gif decoder. Credit to Aki Helin of OUSPG.
[455368] High CVE-2015-1221: Use-after-free in web databases. Credit to Collin Payne.
[448082] High CVE-2015-1222: Use-after-free in service workers. Credit to Collin Payne.
[454231] High CVE-2015-1223: Use-after-free in dom. Credit to Maksymillian Motyl.
[449610] High CVE-2015-1230: Type confusion in v8. Credit to Skylined working with HP’s Zero Day Initiative.
[449958] Medium CVE-2015-1224: Out-of-bounds read in vpxdecoder. Credit to Aki Helin of OUSPG.
[446033] Medium CVE-2015-1225: Out-of-bounds read in pdfium. Credit to cloudfuzzer.
[456841] Medium CVE-2015-1226: Validation issue in debugger. Credit to Rob Wu.
[450389] Medium CVE-2015-1227: Uninitialized value in blink. Credit to Christoph Diehl.
[444707] Medium CVE-2015-1228: Uninitialized value in rendering. Credit to miaubiz.
[431504] Medium CVE-2015-1229: Cookie injection via proxies. Credit to iliwoy.


▶︎ Chrome ブラウザ

▶︎ Chrome Releases: Stable Channel Update


0 件のコメント :

コメントを投稿

Related Posts Plugin for WordPress, Blogger...