Google Releases Chrome Version 0.2.149.29

Antivirus Advice for Computer Protection on the Internet

:: Apple Releases QuickTime 7.7.2 :: Google Releases Google Chrome 19 :: Apple Releases Multiple Security Updates :: Adobe Releases Security Bulletins for Multiple Products :: Apple Releases iOS 5.1.1 :: Adobe Releases Security Advisory for Adobe Flash Player :: Microsoft Releases May Security Bulletin :: Microsoft Releases Advanced Notification for May Security Bulletin :: Microsoft Releases Advance Notification for May Security Bulletin :: Google Releases Chrome 18.0.1025.168 :: RuggedCom Rugged Operating System Vulnerability :: DNSChanger Malware :: Oracle Releases Critical Patch Update for April 2012 :: Apple Releases Flashback Malware Security Updates :: Apple Releases Flashback Malware Security Updates :: HP ProCurve 5400 zl Switches Security Bulletin :: Samba Releases Updates for 3.0.x - 3.6.3 :: Adobe Releases Security Bulletin for Adobe Reader and Acrobat :: Microsoft Releases Advance Notification for April Security Bulletin :: Microsoft Releases April Security Bulletin

Google has released Chrome version 0.2.149.29 to address multiple vulnerabilities. The four vulnerabilities are due to the following:

a buffer overflow condition in the handling of filenames displayed in the "Save As" dialog
a buffer overflow condition in the handling of link targets displayed in the status area when a user hovers over a link
an out-of-bounds memory read error when parsing URLs ending with :%
a default configuration that allows files to be downloaded to the desktop without prompting the user first

Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition.

Google has indicated that the fixed version is being applied to all users through automatic updates. US-CERT encourages users to review the Chrome 0.2.149.29 release notes and upgrade if the newest version has not been automatically applied.

Read more: US-CERT Current Activity

Today's Internet Security Alerts

SANSFIRE 2011
SANSFIRE 2011
(1) HIGH: Google Chrome Sandbox Escapes
...
(2) HIGH: Microsoft Remote Desktop Protocol Vulnerability
...
(3) HIGH: Mozilla Firefox Use-After-Free Vulnerability
...
2.8 Mozilla Firefox/Thunderbird/SeaMonkey "shlwapi.dll" Use-After-Free Memory Corruption
...
12.11.11 IBM DB2 Multiple Security Vulnerabilities
...
12.11.12 IBM Maximo Asset Management Multiple Security Vulnerabilities
...

Popular Words in Security Alerts
affecting macintosh quicktime indicate engine technical charity october manager releases browser requests buffer certificates product