Thursday, April 28, 2011

Dev Channel Update

The Chrome Dev channel has been updated to 12.0.742.12 for all platforms.  This release continues to address UI and performance issues, as well as updates the Sync preferences UI.  There is one known issue:

  • Window controls go off screen in non-Aero themes (bug 80391)

The full list of changes is available from the SVN revision log. If you find new issues, please let us know by filing a bug. Want to change to another Chrome release channel? Find out how.

Jason Kersey
Google Chrome

Beta and Stable Channel Update

The Beta and Stable channels have been updated to 11.0.696.60 for the Windows platform

The following bug was fixed:
  • REGRESSION: Windows painting issue while switching Chrome 11 window with overlapped app. (Issue 74604).
If you find new issues, please let us know by filing a bug.

Want to change to another Chrome release channel? Find out how.

Karen Grunberg
Google Chrome

Wednesday, April 27, 2011

Chrome Stable Update


The Google Chrome team is happy to announce the arrival of Chrome 11.0.696.57 to the Stable Channel for Windows, Mac, Linux, and Chrome Frame.  Chrome 11 contains some really great improvements including speech input through HTML.

Security fixes and rewards:
Please see the Chromium security page for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix.

We’re pleased to associate a record $16,500 of rewards with this patch.

  • [61502] High CVE-2011-1303: Stale pointer in floating object handling. Credit to Scott Hess of the Chromium development community and Martin Barbella.
  • [70538] Low CVE-2011-1304: Pop-up block bypass via plug-ins. Credit to Chamal De Silva.
  • [Linux / Mac only] [70589] Medium CVE-2011-1305: Linked-list race in database handling. Credit to Kostya Serebryany of the Chromium development community.
  • [$500] [71586] Medium CVE-2011-1434: Lack of thread safety in MIME handling. Credit to Aki Helin.
  • [72523] Medium CVE-2011-1435: Bad extension with ‘tabs’ permission can capture local files. Credit to Cole Snodgrass.
  • [Linux only] [72910] Low CVE-2011-1436: Possible browser crash due to bad interaction with X. Credit to miaubiz.
  • [$1000] [73526] High CVE-2011-1437: Integer overflows in float rendering. Credit to miaubiz.
  • [$1000] [74653] High CVE-2011-1438: Same origin policy violation with blobs. Credit to kuzzcc.
  • [Linux only] [74763] High CVE-2011-1439: Prevent interference between renderer processes. Credit to Julien Tinnes of the Google Security Team.
  • [$1000] [75186] High CVE-2011-1440: Use-after-free with <ruby> tag and CSS. Credit to Jose A. Vazquez.
  • [$500] [75347] High CVE-2011-1441: Bad cast with floating select lists. Credit to Michael Griffiths.
  • [$1000] [75801] High CVE-2011-1442: Corrupt node trees with mutation events. Credit to Sergey Glazunov and wushi of team 509.
  • [$1000] [76001] High CVE-2011-1443: Stale pointers in layering code. Credit to Martin Barbella.
  • [$500] [Linux only] [76542] High CVE-2011-1444: Race condition in sandbox launcher. Credit to Dan Rosenberg.
  • [76646] Medium CVE-2011-1445: Out-of-bounds read in SVG. Credit to wushi of team509.
  • [$3000] [76666] [77507] [78031] High CVE-2011-1446: Possible URL bar spoofs with navigation errors and interrupted loads. Credit to kuzzcc.
  • [$1000] [76966] High CVE-2011-1447: Stale pointer in drop-down list handling. Credit to miaubiz.
  • [$1000] [77130] High CVE-2011-1448: Stale pointer in height calculations. Credit to wushi of team509.
  • [$1000] [77346] High CVE-2011-1449: Use-after-free in WebSockets. Credit to Marek Majkowski.
  • [77349] Low CVE-2011-1450: Dangling pointers in file dialogs. Credit to kuzzcc.
  • [$2000] [77463] High CVE-2011-1451: Dangling pointers in DOM id map. Credit to Sergey Glazunov.
  • [$500] [77786] Medium CVE-2011-1452: URL bar spoof with redirect and manual reload. Credit to Jordi Chancel.
  • [$1500] [79199] High CVE-2011-1454: Use-after-free in DOM id handling. Credit to Sergey Glazunov.
  • [79361] Medium CVE-2011-1455: Out-of-bounds read with multipart-encoded PDF. Credit to Eric Roman of the Chromium development community.
  • [79364] High CVE-2011-1456: Stale pointers with PDF forms. Credit to Eric Roman of the Chromium development community.
We would also like to thank miaubiz, kuzzcc, Sławomir Błażek, Drew Yao and Braden Thomas of Apple Product Security and Christian Holler for working with us during the development cycle and helping prevent bugs from ever reaching the stable channel.

More on what's new at the Official Chrome Blog.  You can find full details about the changes that are in Chrome 11 in the SVN revision log. If you find new issues, please let us know by filing a bug. Want to change to another Chrome release channel? Find out how.

Karen Grunberg
Google Chrome

Tuesday, April 26, 2011

Beta Channel Update

The Beta channel has been updated to 11.0.696.57 for Macintosh, Windows, Linux and Chrome Frame platforms

The following bugs were fixed
  • REGRESSION: left property broken with position:fixed elements in RTL documents. (Issue 80216).
  • REGRESSION: Bottom of window Border is drawn 1 Pixel Higher than it should be (Issue 79640).
  • REGRESSION: Chromium window goes beyond the screen for non-Aero themes (Issue 80391).

You can find full details about the changes that are in this version of Chrome 11 in the SVN revision log.

If you find new issues, please let us know by filing a bug.

Want to change to another Chrome release channel? Find out how.

Karen Grunberg
Google Chrome

Monday, April 25, 2011

Dev Channel Update

The Chrome Dev channel has been updated to 12.0.742.9 for all platforms.  This release continues to address UI and performance issues, as well as updates the Sync preferences UI. The full list of changes is available from the SVN revision log.  If you find new issues, please let us know by filing a bug. Want to change to another Chrome release channel? Find out how.


Jason Kersey
Google Chrome

Friday, April 22, 2011

Dev Channel Update

The Chrome Dev channel has been updated to 12.0.742.5 for all platforms.  This release fixes a regression with sync along with other bugs. The full list of changes is available from the SVN revision log.  If you find new issues, please let us know by filing a bug. Want to change to another Chrome release channel? Find out how.

Jason Kersey
Google Chrome

Thursday, April 21, 2011

Chrome OS Beta Channel Update

The Chrome OS Beta channel has been updated to the latest R11 release 0.11.257.91 including Chrome update (11.0.696.54).

If you find new issues, please let us know by visiting our help site or filing a bug.

Orit Mazor
Google Chrome

Wednesday, April 20, 2011

Dev Channel Update

The Chrome Dev channel has been updated to 12.0.742.0 for all platforms.  This release contains stability and performance fixes.  There is one known issue.

  • Sync may not work correctly

The full list of changes is available from the SVN revision log.  If you find new issues, please let us know by filing a bug. Want to change to another Chrome release channel? Find out how.


Jason Kersey
Google Chrome

Monday, April 18, 2011

Beta Channel Update

The Beta channel has been updated to 11.0.696.50 for Macintosh, Windows, Linux and Chrome Frame platforms

The following bugs were fixed
  • Flash does not load until the tab gets activated. (Issue 71591).
  • Going to settings from notification popup crashes Chrome (Issue 78938).
  • Disable speech input for readonly and disabled input fields (Issue 58540).

You can find full details about the changes that are in this version of Chrome 11 in the SVN revision log.

If you find new issues, please let us know by filing a bug.

Want to change to another Chrome release channel? Find out how.

Karen Grunberg
Google Chrome

Thursday, April 14, 2011

Beta Channel Update

Note: Chrome Beta Channel has been updated to 11.0.696.48 for Linux with the same changes as below.

The Chrome Beta channel has been updated to 11.0.696.44 for Windows, Mac and Chrome Frame.

This release contains a new version of Adobe Flash which includes a fix for security vulnerability.

If you find new issues, please let us know by filing a bug.

Want to change to another Chrome release channel? Find out how.

Karen Grunberg
Google Chrome

Stable Channel Update



The Chrome Stable channel has been updated to 10.0.648.205 for Windows, Mac, Linux and Chrome Frame.  This release contains a new version of Adobe Flash which includes a fix for a security vulnerability, as well as the security fixes listed below.

Security fixes and rewards:
Please see the Chromium security page for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix.

  • [$500] [Windows only] [70070] Critical CVE-2011-1300: Off-by-three in GPU process. Credit to yuri.ko616.
  • [75629] Critical CVE-2011-1301: Use-after-free in the GPU process. Credit to Google Chrome Security Team (Inferno).
  • [$1000] [78524] Critical CVE-2011-1302: Heap overflow in the GPU process. Credit to Christoph Diehl.

    The full list of changes is available from the SVN revision log.  If you find new issues, please let us know by filing a bug. Want to change to another Chrome release channel? Find out how.


    Jason Kersey
    Google Chrome

    Tuesday, April 12, 2011

    Dev Channel Update

    The Chrome Dev channel has been updated to 12.0.733.0 for all platforms.  This release contains updates focused on stability and UI tweaks.  The full list of changes is available from the SVN revision log.  If you find new issues, please let us know by filing a bug. Want to change to another Chrome release channel? Find out how.


    Jason Kersey
    Google Chrome

    Beta Channel Update

    The Beta channel has been updated to 11.0.696.43 for Macintosh, Windows, Linux and Chrome Frame platforms

    The following bugs were fixed
    • Passwords sync: passwords sync commits after EVERY browser restart (Issue 78548).
    • Autofill fails to fill forms (Issue 78509).
    • a few known crashes (Issue 78688, Issue 68350, Issue 77665, Issue 74585, Issue 76092, Issue 77219 and Issue 77447).
    • Redirect to my site without CFInstall.js (Issue 60018).
    • Update Silverlight v3 version metadata (Issue 78005).
    • Blocked plug-in dialog: make sure "Run this time" button is the first one (Issue 78120).
    • Policy: Proxy configuration over policy does not work. (Issue 78016).
    • Editing style adds the word "initial" for any property value that uses a paren (Issue 75302).
    • Google Chrome Helper doesn't quit, killing it relaunches a new helper process (Issue 74983).
    You can find full details about the changes that are in this version of Chrome 11 in the SVN revision log.

    If you find new issues, please let us know by filing a bug.

    Want to change to another Chrome release channel? Find out how.

    Karen Grunberg
    Google Chrome

    Tuesday, April 5, 2011

    Dev Channel Update

    The Dev channel has been updated to 12.0.725.0 for Windows, Mac, Linux and Chrome Frame

    All
    • Updated V8 - 3.2.6.0
    • Spring cleaning in the code, lots of code cleanup and refactoring under the covers
    Windows
    • Continued work on tab multi-select
      Known Issues
      • 78475 Regression: Bidi Chrome UI lost directional diplay in menu and DOMUI and about: page functions
      • 78501 Regression: NACL apps are no longer working
      • 78509 Regression: Autofill fails on certain forms
      • 78073 Regression: Autocomplete sometimes pops up in the upper left corner
      More details about additional changes are available in the svn log of all revision.

       You can find out about getting on the Dev channel here: http://dev.chromium.org/getting-involved/dev-channel.

       If you find new issues, please let us know by filing a bug at http://code.google.com/p/chromium/issues/entry

      Anthony Laforge
      Google Chrome

      Monday, April 4, 2011

      Beta Channel Update

      The Beta channel has been updated to 11.0.696.34 for Macintosh, Windows, Linux and Chrome Frame platforms

      The following bugs were fixed
      • Duplicate desktop icon is created using First Run UI even if it's present (Issue 5073).
      • FLACEncoder::Encode has mismatched free (Issue 77653).
      • Switch from using Speex to FLAC for speech input requests (Issue 61677).
      • Chrome hangs on form submit with lots of stored Autofill profiles (Issue 75862).
      • Browser crash if tab is closed while page is being downloaded (Issue 76963).
      You can find full details about the changes that are in this version of Chrome 11 in the SVN revision log.

      If you find new issues, please let us know by filing a bug.

      Want to change to another Chrome release channel? Find out how.

      Karen Grunberg
      Google Chrome

      Chrome OS Beta Channel Update

      The Chrome OS Beta channel has been updated to R11 release 0.11.257.44 including the new Chrome 11 Beta, new trackpad and several stability and functional improvements over the previous release. This release contains the following fixes:
      • We are now running Flash Player on a new platform known as Pepper/PPAPI by default, which we hope will improve stability and performance. It is also running inside a full sandbox which further protects users from malware and security exploits.
      • An NPAPI version of Flash Player is still included, but not used by default. If you experience significant problems or incompatibilities with the (default) PPAPI version, you can switch to the NPAPI version using chrome://plugins.
      • Several WiFi bug fixes are in
      • Enabled GSM support for 3G via commands in crosh
      • AutoUpdate now supports Proxy AutoConfiguration (PAC) files and automatic proxy detection
      • New window switcher UI

      You can find full list of fixes that are in Chrome OS R11 in the chromium-os bug tracker . If you find new issues, please let us know by visiting our help site or filing a bug.

      Orit Mazor
      Google Chrome