Google Chrome Releases Chrome Stable Update

For operating systems such as Windows, Mac and Linux, the stable channel has been updated to 43.0.2357.130. In the log, a partial list of channels is available.

Rewards and Security Fixes

Until the majority of the users are updated with the fix, the access to the bug details as well as the links may be kept restricted. Restriction by Chrome will also be retained if the bug endures in the third party library that alternative projects similarly depend on but haven’t been fixed yet.

Following are the highlights of 4 fixes provided by external researchers.

  • [$5000][464922] High CVE-2015-1266: Scheme validation error in WebUI. Credit to Anonymous.
  • [TBD][494640] High CVE-2015-1268: Cross-origin bypass in Blink. Credit to Mariusz Mlynski.
  • [TBD][497507] Medium CVE-2015-1267: Cross-origin bypass in Blink. Credit to Anonymous.
  • [TBD][461481] Medium CVE-2015-1269: Normalization error in HSTS/HPKP preload list. Credit to Mike Ruddy.

Do you have an interested in switching release channels? Yes, then find out how they work. If you discover a new issue, report it to Chrome by filling a bug. Google Chrome is also hiring project managers with technical background that are passionate regarding Chrome and would help to enhance the web forward.