Friday, November 30, 2012

Stable Update for Chrome OS

The Stable channel has been updated to 23.0.1271.94 (Platform version: 2913.224.0) for all Chrome OS Devices. This build contains a number of new features, bug fixes and security improvements. Machines will be receiving updates over the next several days.

Release Highlights:

  • Updated default apps
  • Window Manager Enhancements
  • UI improvements for notifications through the new message area
  • UI improvements to the out of box experience
  • UI improvements to the sign-in screen
  • Device reset from start screen and settings (click here for more details)
  • Enable key apps offline by default
  • Cloud-based wallpaper management  

Security fixes and rewards:

  • [$3500] [145525] Medium CVE-2012-5129: heap buffer overflow in GPU process with WebGL. Credit to miaubiz.

Please see the Chromium security page for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix.

If you find new issues, please let us know by visiting our help site or filing a bug. Interested in switching channels? Find out how. You can submit feedback using ‘Report an issue’ under the wrench menu.

Ben Henry & Josafat Garcia
Google Chrome

Thursday, November 29, 2012

Beta Channel Update

The Beta channel has been updated to 24.0.1312.27  for Windows, Mac, Linux, and Chrome Frame.  This build contains following updates:

  • Fixed random Chinese/Japanese characters that are missing in documents printed via the system print dialog on Windows XP SP3. [Issue: 128506]
  • Fixed memory leak in  GPU accelerated canvas. [Issue: 160411]
  • Fixed console.log which doesn’t output jQuery objects properly. [Issue: 162570]
  • Fixed stability issues like 161854, 154483, 154462, 153376.

Full details about what changes are in this build are available in the SVN revision log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.

Dharani Govindan
Google Chrome

Stable Channel Update

The Stable channel has been updated to 23.0.1271.95 for Windows, Mac, Linux, and ChromeFrame platforms.

Security fixes and rewards:

Please see the Chromium security page for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix.

  • [161564] High CVE-2012-5138: Incorrect file path handling. Credit to Google Chrome Security Team (Jüri Aedla).
  • [$7331] [162835] High CVE-2012-5137: Use-after-free in media source handling. Credit to Pinkie Pie.

Congratulations to Pinkie Pie for completing challenge: 64-bit exploit.


Full details about what changes are in this release are available in the SVN revision log.  Interested in hopping on the stable channel?  Find out how.  If you find a new issue, please let us know by filing a bug.

Karen Grunberg
Google Chrome

Wednesday, November 28, 2012

Dev Channel Update for Chrome OS

The Dev channel has been updated to 25.0.1324.1 (Platform versions 3196.4.0) for Samsung Chromebooks. This build contains a number of stability fixes.

Release highlights:

  • Firmware updated to 2965.114

If you find new issues, please let us know by visiting our help site or filing a bug. Interested in switching channels? Find out how. You can submit feedback using ‘Report an issue...’ in the Chome menu (3 horizontal bars in the upper right corner of the browser).


Danielle Drew
Google Chrome

Dev Channel Update

The Dev channel has been updated to 25.0.1337.0 for Windows, Mac, and Chrome Frame.  A full list of changes in this build is available in the SVN revision log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.

Jason Kersey
Google Chrome

Chrome for Android Update

The stable channel of Chrome for Android has been updated to 18.0.1025469 for ARM devices and to 18.0.1026322 for x86 devices. The new update includes fixes for some frequently occurring stability issues.  Both updates are now available for download on Google Play and in the Google Play Store on your mobile devices. Known issues are available on the Chrome support site.

If you find a new issue, please let us know by filing a bug.  More information on Chrome for Android is available on the Chrome site.

Vinod Ramachandran
Google Chrome

Chrome for iOS Update

Chrome for iPhone and iPad has been updated to Chrome 23 / 23.0.1271.91. This build brings in a number of new features and fixes to user-reported issues including:
  • Ability to open PDFs in other apps
  • Support for saving your boarding passes and tickets with Passbook
  • An option to automatically detect text encoding
  • Stability and security improvements
You can get the update via the App Store, or from the update prompt inside of Chrome. Known issues are available on the Chrome support site. If you find a new issue, please let us know by filing a bug.

Michele Aiello
Google Chrome

Tuesday, November 27, 2012

Beta Channel Update

The Beta channel has been updated to 24.0.1312.25  for Windows, Mac, Linux, and Chrome Frame.  This build contains following updates:

  • [Windows 8]: Fixed delete all pinned-to-taskbar shortcuts owned by the uninstalled Chrome. [Issue: 158632]
  • [Windows 8]: Fixed pin / unpin status if the user cancels an action or pins / unpins from start screen. [Issue: 144332]
  • Fixed garbled header and footer text in print preview. [Issue: 152893]
  • Fixed extension action badges with long text. [Issue: 160069]
  • Disable find if constrained window is shown. [Issue: 156969]
  • Enable fullscreen for apps windows. [Issue: 161246]
  • Fixed broken profile with system-wide installation and UserDataDir & DiskCacheDir policy. [Issue: 161336]
  • Fixed stability crashes like 158747, 159437, 149139, 160914, 160401.

Full details about what changes are in this build are available in the SVN revision log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.

Dharani Govindan
Google Chrome

Beta Update for Chrome OS


The Beta channel has been updated to 23.0.1271.94 (Platform version 2913.224.0) for all Chrome OS devices. This build contains a number of stability fixes.

Release highlights:
  • Pepper Flash updated to release 11.3.31.519 ARM
  • Network stability changes

If you find new issues, please let us know by visiting our help site or filing a bug. Interested in switching channels? Find out how. You can submit feedback using ‘Report an issue...’ in the Chome menu (3 horizontal bars in the upper right corner of the browser).

Josafat Garcia and Ben Henry
Google Chrome

Monday, November 26, 2012

Stable Channel Update

The Stable channel has been updated to 23.0.1271.91 for Windows, Mac, Linux, and ChromeFrame platforms.

This version fixes several issues including:

  • No audio from Flash content when speaker configuration is set to Quadraphonic (Issue: 159924)
  • Aw, Snap renderer crash on Windows Server 2003 (Issue: 160559)


Security fixes and rewards:

Please see the Chromium security page for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix.

Occasionally, we issue special rewards for bugs outside of Chrome, particularly where the bug is very severe and/or we are able to partially work around the issue:

  • [$1000] [152746] High CVE-2012-5131: Corrupt rendering in the Apple OSX driver for Intel GPUs. Credit to Justin Drake.

And back to your regular scheduled rewards:

  • [$1000] [156567] High CVE-2012-5133: Use-after-free in SVG filters. Credit to miaubiz.
  • [$500] [148638] Medium CVE-2012-5130: Out-of-bounds read in Skia. Credit to Atte Kettunen of OUSPG.
  • [155711] Low CVE-2012-5132: Browser crash with chunked encoding. Credit to Attila Szász.
  • [158249] High CVE-2012-5134: Buffer underflow in libxml. Credit to Google Chrome Security Team (Jüri Aedla).
  • [159165] Medium CVE-2012-5135: Use-after-free with printing. Credit to Fermin Serna of Google Security Team.
  • [159829] Medium CVE-2012-5136: Bad cast in input element handling. Credit to Google Chrome Security Team (Inferno).

Many of the above bugs were detected using AddressSanitizer.


Full details about what changes are in this release are available in the SVN revision log.  Interested in hopping on the stable channel?  Find out how.  If you find a new issue, please let us know by filing a bug.

Karen Grunberg
Google Chrome

Monday, November 19, 2012

Dev Update for Chrome OS

The Dev channel has been updated to 25.0.1324.1 (Platform versions 3196.3.0) for Samsung Chromebooks. This build contains a number of stability fixes.

Release highlights:

  • Fix for an issue which caused users to occasionally be unable to login until the system was rebooted.

If you find new issues, please let us know by visiting our help site or filing a bug. Interested in switching channels? Find out how. You can submit feedback using ‘Report an issue...’ in the Chome menu (3 horizontal bars in the upper right corner of the browser).


Danielle Drew
Google Chrome

Dev Update for Chrome OS

The Dev channel has been updated to 25.0.1324.1 (Platform versions 3196.1.0 for most platforms and 3196.2.0 for Samsung Chromeboxes) for all Chrome OS devices. This build contains a number of stability fixes. [Updated 5:18pm PST with additional highlights.]

Release highlights:

  • Pepper Flash updated to releases 11.5.31.105 for new Samsung Chromebooks and 11.5.31.109 for all other platforms
  • App List now supports re-ordering
  • Extended Desktop Support (extend your desktop / mirror displays)
  • Intelligent Window positioning (if you don't manually move your windows, we will arrange them to show you more at all times)
Known issues:
  • Audio on some systems may be distorted when playing a single audio stream for a long period of time, or when playing audio on multiple tabs. (Issue 35464)
  • "Allow proxies for shared networks" is enabled by default. (Issue 157420)
  • New Samsung Chromebook systems may be unable to connect via ethernet in some situations. Workaround: Restart the system with the ethernet connected to the Chromebook.  (Issue 36328)
  • On the Settings tab when modifying your avatar image, or when creating a new user, the camera LED may remain illuminated for several seconds after leaving the page.

If you find new issues, please let us know by visiting our help site or filing a bug. Interested in switching channels? Find out how. You can submit feedback using ‘Report an issue...’ in the Chome menu (3 horizontal bars in the upper right corner of the browser).


Danielle Drew
Google Chrome

Thursday, November 15, 2012

Stable Update for Chrome OS


The Stable channel has been updated to 23.0.1271.89 (Platform version: 2913.187.0) for the new Samsung Chromebook. Machines will be receiving update over the next several days.

Some highlights of these changes are:
  • Stability fixes
If you find new issues, please let us know by visiting our help site or filing a bug. Interested in switching channels? Find out how. You can submit feedback using ‘Report an issue...’ in the Chrome menu (3 horizontal bars in the upper right corner of the browser).

Josafat Garcia & Ben Henry
Google Chrome

Wednesday, November 14, 2012

Beta Channel Update

The Beta channel has been updated to 24.0.1312.14  for Windows, Mac, Linux, and Chrome Frame.  This build contains following updates:

  • [Linux] {gtk} Fixed <input> selection renders white text on white background in apps. (Issue: 158422)
  • [Linux] Fixed translate infobar button to show selected language. (Issue: 155350)
  • [Linux] Fixed broken Arabic language. (Issue: 158978)
  • Fixed pre-rendering if the preference is disabled at start up. (Issue: 159393)
  • Fixed JavaScript rendering issue. (Issue: 159655)

Full details about what changes are in this build are available in the SVN revision log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.

Dharani Govindan
Google Chrome

Tuesday, November 13, 2012

Beta Update for Chrome OS


The Beta channel has been updated to 23.0.1271.89 (Platform version 2913.187.0) for all Chrome OS devices. This build contains a number of stability fixes.

Release highlights:
  • Pepper Flash updated to release 11.5.31.3
  • Network stability changes
Known issues:
  • Black background on login screen occasionally (Issue: 158383 )

If you find new issues, please let us know by visiting our help site or filing a bug. Interested in switching channels? Find out how. You can submit feedback using ‘Report an issue...’ in the Chome menu (3 horizontal bars in the upper right corner of the browser).

Josafat Garcia and Ben Henry
Google Chrome

Monday, November 12, 2012

Dev Channel Update

The Dev channel has been updated to 25.0.1323.1 for Windows, Mac, Linux, and Chrome Frame.  A full list of changes in this build is available in the SVN revision log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.

Jason Kersey
Google Chrome

Thursday, November 8, 2012

Stable Channel Update for Chrome OS


The Stable channel has been updated to 23.0.1271.84 (Platform version: 2913.168.0) for the new Samsung Chromebook.  Machines will be receiving update over the next several days.

Some highlights of these changes are:
  • Fixed an issue in which a black screen is sometimes seen after resume (Issue: 36027)
  • Stability fixes
Known Issues:
  • Black background on login screen occasionally (Issue: 158383)
If you find new issues, please let us know by visiting our help site or filing a bug. Interested in switching channels? Find out how. You can submit feedback using ‘Report an issue...’ in the hotdog (3 horizontal bars in the upper right corner of the browser) menu.

Josafat Garcia & Ben Henry
Google Chrome

Beta Channel Update

The Beta channel has been updated to 24.0.1312.5  for Windows, Mac, Linux, and Chrome Frame.  This build contains a slew of awesome developer features. More on what's new at the Chromium blog.

Full details about what changes are in this build are available in the SVN revision log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.

Dharani Govindan
Google Chrome

Tuesday, November 6, 2012

Dev and Beta Update for Chrome OS


The Dev and Beta channel has been updated to 23.0.1271.84 (Platform version: 2913.168.0) for the new Samsung Chromebook.  

Some highlights of these changes are:
  • Fixed an issue in which a black screen is sometimes seen after resume (Issue: 36027)
  • Stability fixes
Known Issues:
  • Black background on login screen occasionally (Issue: 158383)
If you find new issues, please let us know by visiting our help site or filing a bug. Interested in switching channels? Find out how. You can submit feedback using ‘Report an issue...’ in the hotdog (3 horizontal bars in the upper right corner of the browser) menu.

Josafat Garcia & Ben Henry
Google Chrome

Dev Channel Update

The Dev channel has been updated to 24.0.1312.5  for Windows, Mac, Linux, and Chrome Frame.  This build contains following updates:


  • Fixed BrowserFrameWin artifact on opaque to glass frame changes. (Issue: 156982)
  • Fixed a crash that could occur if the user closed a tab with an uncommitted search navigation. (Issue: 158201)
  • Fixed focus issue which does not change from Omnibox to Find in Page on mouseclick. (Issue: 158562)
  • Flash Mac: Fixed escape to exit fullscreen. (Issue: 155492)
  • Fixed crash when installing an extension and the browser window goes away. (Issue: 134194)
  • Ensure sidebar links are re-enabled when a confirmation dialog is closed. (Issue: 158912)
  • Fixed old Chrome version cleanup. (Issue: 75951)
  • Fixed memory leak in Chrome Windows. (Issue: 158931)
  • Fixed F4 inside <input type=time> should not open calendar picker. (Issue: 158482)
  • Fixed calendar picker can flicker when opened from the suggestion picker. (Issue 158608)

Full details about what changes are in this build are available in the SVN revision log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.

Dharani Govindan
Google Chrome

Stable Channel Release and Beta Channel Update

The Chrome team is excited to announce the release of Chrome 23 to the Stable Channel. 23.0.1271.64 for Windows, Mac, Linux, and Chrome Frame. Chrome 23 contains a number of new features including GPU accelerated video decoding on Windows and easier website permissions. More detailed updates are available on the Chrome Blog.  

Security fixes and rewards:

Please see the Chromium security page for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix.

Occasionally, we issue special rewards for bugs outside of Chrome, particularly where the bug is very severe and/or we are able to partially work around the issue:

  • [Mac OS only] [$1000] [149904] High CVE-2012-5115: Defend against wild writes in buggy graphics drivers. Credit to miaubiz.

And back to your regular scheduled rewards, including some at the new higher levels:

  • [$3500] [157079] Medium CVE-2012-5127: Integer overflow leading to out-of-bounds read in WebP handling. Credit to Phil Turnbull.
  • [Linux 64-bit only] [$1500] [150729] Medium CVE-2012-5120: Out-of-bounds array access in v8. Credit to Atte Kettunen of OUSPG.
  • [$1000] [143761] High CVE-2012-5116: Use-after-free in SVG filter handling. Credit to miaubiz.
  • [Mac OS only] [$1000] [149717] High CVE-2012-5118: Integer bounds check issue in GPU command buffers. Credit to miaubiz.
  • [$1000] [154055] High CVE-2012-5121: Use-after-free in video layout. Credit to Atte Kettunen of OUSPG.
  • [145915] Low CVE-2012-5117: Inappropriate load of SVG subresource in img context. Credit to Felix Gröbert of the Google Security Team.
  • [149759] Medium CVE-2012-5119: Race condition in Pepper buffer handling. Credit to Fermin Serna of the Google Security Team.
  • [154465] Medium CVE-2012-5122: Bad cast in input handling. Credit to Google Chrome Security Team (Inferno).
  • [154590] [156826] Medium CVE-2012-5123: Out-of-bounds reads in Skia. Credit to Google Chrome Security Team (Inferno).
  • [155323] High CVE-2012-5124: Memory corruption in texture handling. Credit to Al Patrick of the Chromium development community.
  • [156051] Medium CVE-2012-5125: Use-after-free in extension tab handling. Credit to Alexander Potapenko of the Chromium development community.
  • [156366] Medium CVE-2012-5126: Use-after-free in plug-in placeholder handling. Credit to Google Chrome Security Team (Inferno).
  • [157124] High CVE-2012-5128: Bad write in v8. Credit to Google Chrome Security Team (Cris Neckar).

Many of the above bugs were detected using AddressSanitizer.

The security issues in V8 have been fixed in v8-3.13.7.5.

We’d also like to thank miaubiz for working with us during the development cycle and preventing security regressions from ever reaching the stable channel. Rewards were issued.


This version also has a new Adobe Flash. More details can be found here.


Full details about what changes are in this release are available in the SVN revision log.  Interested in hopping on the stable channel?  Find out how.  If you find a new issue, please let us know by filing a bug.

Karen Grunberg
Google Chrome

Beta Update for Chrome OS

The Beta channel has been updated to 23.0.1271.84 (Platform version 2913.166.0) for all Chrome OS devices except the new Samsung Chromebook.

This build contains a number of stability fixes.

If you find new issues, please let us know by visiting our help site or filing a bug. Interested in switching channels? Find out how. You can submit feedback using ‘Report an issue...’ in the Chome menu (3 horizontal bars in the upper right corner of the browser).

Josafat Garcia and Ben Henry
Google Chrome