자 료 실

서버 / IT Google Chrome 28.0.1500.71 Stable

2013.07.10 01:55

마이크로닉스 조회:4609

https://dl.google.com/chrome/win/28.0.1500.71_chrome_installer.exe


TUESDAY, JULY 9, 2013

Stable Channel Update

The Stable channel has been updated to 28.0.1500.71 for Windows, Macintosh and Chrome Frame platforms.

Security fixes and rewards:


Please see the Chromium security page for more information. (Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix.)


This automatic update includes security fixes. We’d like to highlight the following fixes for various reasons (crediting external researchers, issuing rewards, or highlighting particularly interesting issues):


  • [$21,500] A special reward for Andrey Labunets for his combination of CVE-2013-2879 and CVE-2013-2868 along with some (since fixed) server-side bugs.
  • [252216] Low CVE-2013-2867: Block pop-unders in various scenarios.
  • [252062] High CVE-2013-2879: Confusion setting up sign-in and sync. Credit to Andrey Labunets.
  • [252034] Medium CVE-2013-2868: Incorrect sync of NPAPI extension component. Credit to Andrey Labunets.
  • [245153] Medium CVE-2013-2869: Out-of-bounds read in JPEG2000 handling. Credit to Felix Groebert of Google Security Team.
  • [$6267.4] [244746] [242762] Critical CVE-2013-2870: Use-after-free with network sockets. Credit to Collin Payne.
  • [$3133.7] [244260] Medium CVE-2013-2853: Man-in-the-middle attack against HTTP in SSL. Credit to Antoine Delignat-Lavaud and Karthikeyan Bhargavan from Prosecco at INRIA Paris.
  • [$2000] [243991] [243818] High CVE-2013-2871: Use-after-free in input handling. Credit to miaubiz.
  • [Mac only] [242702] Low CVE-2013-2872: Possible lack of entropy in renderers. Credit to Eric Rescorla.
  • [$1000] [241139] High CVE-2013-2873: Use-after-free in resource loading. Credit to miaubiz.
  • [Windows + NVIDIA only] [$500] [237611] Medium CVE-2013-2874: Screen data leak with GL textures. Credit to “danguafer”.
  • [$500] [233848] Medium CVE-2013-2875: Out-of-bounds-read in SVG. Credit to miaubiz.
  • [229504] Medium CVE-2013-2876: Extensions permissions confusion with interstitials. Credit to Dev Akhawe.
  • [229019] Low CVE-2013-2877: Out-of-bounds read in XML parsing. Credit to Aki Helin of OUSPG.
  • [196636] None: Remove the “viewsource” attribute on iframes. Credit to Collin Jackson.
  • [177197] Medium CVE-2013-2878: Out-of-bounds read in text handling. Credit to Atte Kettunen of OUSPG.


In addition, our ongoing internal security work was as usual responsible for a wide range of fixes:
  • [256985] High CVE-2013-2880: Various fixes from internal audits, fuzzing and other initiatives (Chrome 28).


Full details about what changes are in this build are available in the SVN revision log and the Chrome Chrome Blog. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.

Anthony Laforge

Google Chrome
번호 제목 글쓴이 조회 추천 등록일
[공지] 저작권 보호 요청 자료 목록 gooddew - - -
[공지] 자료실 이용간 유의사항 gooddew - - -
110 서버 / IT| 오프라인용 Google Chrome 29.0.1547.57 Stable [3] 마이크로닉 5045 1 08-21
109 서버 / IT| 파밍캅 v2.6 [4] ATRAXIA 10003 1 08-18
108 서버 / IT| FTP 클라이언트 파일질라 DOS 5133 0 08-15
107 서버 / IT| Mozilla Firefox 23.0 정식 버전 [8] 브라흐마 5140 2 08-06
106 서버 / IT| SRWare Iron 28.0.1550.0 (210000) Stable for Windows [2] 보리차 4463 0 07-25
105 서버 / IT| Safari 5.1.7 (Windows) [11] 고스트 5249 0 07-24
104 서버 / IT| 오프라인용 Google Chrome 28.0.1500.72 Stable 마이크로닉 4349 0 07-13
» 서버 / IT| Google Chrome 28.0.1500.71 Stable 마이크로닉 4609 0 07-10
102 서버 / IT| Mozilla Firefox 22.0 (수정) [8] 이가이버 5306 0 06-26
101 서버 / IT| 파이어폭스 나이트리 빌드 [2] tanny tale 6517 1 06-23
100 서버 / IT| 카카오톡 PC 버전 [9] 마니아 8575 1 06-20
99 서버 / IT| firefox night biuld [1] Lr라 4370 0 06-20
98 서버 / IT| 새로운 SD 롬업방법 - Portadroid SuperRAM GB [1] 골드캐쉬 9402 0 06-14
97 서버 / IT| IE 테스터 익스플로러 버전별 호환성 보기 [3] gooddew 7771 0 06-11
96 서버 / IT| ip우회 브라우저. Tor Browser 포터블 [9] 윈폴 13044 4 05-31
95 서버 / IT| 신종 금융사기 예방 프로그램 파밍캅 v2.6 [6] 갤러그 6379 3 05-28
94 서버 / IT| SG TCP Optimizer [1] gooddew 6672 1 05-24
93 서버 / IT| Seed - 더욱 자유로워진 영상통화! [4] 달려야하니 8307 4 04-25
92 서버 / IT| 물병편지ㅎㅎ [1] Tillandsia 6090 0 04-24
91 서버 / IT| FlashFXP 4.3.1 Build 1953 (한글지원) [3] 삐진윈도우 5473 1 04-21
XE1.11.6 Layout1.4.8