After few days since the release of the first beta version, Google released today a new version of Chrome that fix some vulnerabilities recently discovered.
The first vulnerability, identified by Bach Koa Internetwork Security, is a buffer overflow that get triggered when a user saves a Web page containing a very long “title” tag. As usual when buffers overflow are exploited, an attacker could use it to inject malicious code to then have control of the victim’s computer.
The second vulnerability fixed is the “carpet bombing” flaw discovered by researcher Aviv Raff. The vulnerability is caused by the use of an outdated version of Apple WebKit by Chrome. The vulnerability causes Windows to download a dangerous Java archive file (JAR) and execute it without any warning to the users.
The vulnerable version released last week is the 0.2.149.27, while the new version is 0.2.149.29.
Links
Google Chrome: http://www.google.com/chrome;
Bach Koa Internetwork Security’s advisory: http://security.bkis.vn/?p=119;
Aviv Raff’s advisory: http://aviv.raffon.net/2008/09/03/GoogleMule.aspx.
