Number:IRCNE2014042154
Date: 2014-04-09
According to “zdnet”, according to Google's Chrome Releases blog, the Chrome 34 release — now promoted to the Stable channel — contains a number of fixes and improvements. In total, 34 security vulnerabilities have been patched, including approximately 19 highly rated, critical flaws.
Chrome 34 includes new apps, extended APIs, a different look for Windows 8, and "lots of under the hood" changes to improve stability and performance.
The full list of fixes is below:
- [354123] High CVE-2014-1716: UXSS in V8.
- [353004] High CVE-2014-1717: OOB access in V8.
- [348332] High CVE-2014-1718: Integer overflow in compositor.
- [343661] High CVE-2014-1719: Use-after-free in web workers.
- [356095] High CVE-2014-1720: Use-after-free in DOM.
- [350434] High CVE-2014-1721: Memory corruption in V8.
- [330626] High CVE-2014-1722: Use-after-free in rendering.
- [337746] High CVE-2014-1723: Url confusion with RTL characters.
- [327295] High CVE-2014-1724: Use-after-free in speech.
- [357332] Medium CVE-2014-1725: OOB read with window property.
- [346135] Medium CVE-2014-1726: Local cross-origin bypass.
- [342735] Medium CVE-2014-1727: Use-after-free in forms.
- 9