Windows XP Themes, Windows Vista Themes, Windows 7 Themes, Desktop Themes

Full Version: Google Chrome 3.0.195.33 Released

Windows XP Themes, Windows Vista Themes, Windows 7 Themes, Desktop Themes > Imported News > Neowin News

Peter

Nov 12 2009, 08:41 PM

Google Chrome's Stable channel has been updated to 3.0.195.33 to fix a potential issue that could cause Google Chrome to stop working and a security issue.

This release removes a dependency on a Windows library (t2embed.dll) that is not required by Google Chrome. If that library is missing or the user does not have permission to read it, earlier versions of Google Chrome would fail silently.

Security Fix:
CVE-2009-2816 Custom headers incorrectly sent for CORS OPTIONS request

A malicious web site operator could set custom HTTP headers on cross-origin OPTIONS requests.

More info: https://bugs.webkit.org/show_bug.cgi?id=28446, http://support.apple.com/kb/HT3949

Severity: Low. The majority of users are unlikely to be impacted by this issue.
Credit: Apple Security

Mitigations:

A victim would need to visit a page under an attacker's control.
The OPTIONS attribute is not widely supported by servers.

Mark Larson
Google Chrome Team

Download: Google Chrome 3.0.195.33

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.