Google announced the latest release of it's browser, Chrome. Version 18 contains better graphics and improved security. Google improved the graphics by enabling by default Canvas2D and WebGL. This allows users with older computers that do not have a hardware graphics processing unit (GPU) to enjoy better graphics. You can see examples of this for yourself by looking at a world view of Google searches by language here and an eerily realistic view of a human head here.
Google Chrome Security Fixes
Besides the cool improved graphics, Chrome 18 also has improved security. Here is a list of exploits fixed:
109574] Medium CVE-2011-3058: Bad interaction possibly leading to XSS in EUC-JP. Credit to Masato Kinugawa.
- 112317 Medium CVE-2011-3059: Out-of-bounds read in SVG text handling. Credit to Arthur Gerkis.
- 114056 Medium CVE-2011-3060: Out-of-bounds read in text fragment handling. Credit to miaubiz.
- 116398 Medium CVE-2011-3061: SPDY proxy certificate checking error. Credit to Leonidas Kontothanassis of Google.
- 116524 High CVE-2011-3062: Off-by-one in OpenType Sanitizer. Credit to Mateusz Jurczyk of the Google Security Team.
- 117417 Low CVE-2011-3063: Validate navigation requests from the renderer more carefully. Credit to kuzzcc, Sergey Glazunov, PinkiePie and scarybeasts (Google Chrome Security Team).
- 117471 High CVE-2011-3064: Use-after-free in SVG clipping. Credit to Atte Kettunen of OUSPG.
- 117588 High CVE-2011-3065: Memory corruption in Skia. Credit to Omair.
- 117794 Medium CVE-2011-3057: Invalid read in v8. Credit to Christian Holler.
The cash amounts represent what Google paid to hackers during Pwnium. The exploits without cash payouts were detected by Google's own AddressSanitizer tool.
Read More: Chrome 18 Release Announcement, Chrome Blog, Chromium Blog