HMUG: Security Update: Chrome 62.0.3202.62

Huntsville Macintosh Users Group
UNIX/Security News

Home | Archive | UNIX

Join the Group | About Us | Calendar | Contact Us | Site Index

Security Update: Chrome 62.0.3202.62

(2017-10-17)

Google has updated Chrome to version 62.0.3202.62. This update includes 35 security fixes including:

High CVE-2017-5124: UXSS with MHTML.
High CVE-2017-5125: Heap overflow in Skia.
High CVE-2017-5126: Use after free in PDFium.
High CVE-2017-5127: Use after free in PDFium.
High CVE-2017-5128: Heap overflow in WebGL.
High CVE-2017-5129: Use after free in WebAudio.
High CVE-2017-5132: Incorrect stack manipulation in WebAssembly.
High CVE-2017-5130: Heap overflow in libxml2.
Medium CVE-2017-5131: Out of bounds write in Skia.
Medium CVE-2017-5133: Out of bounds write in Skia.
Medium CVE-2017-15386: UI spoofing in Blink.
Medium CVE-2017-15387: Content security bypass.
Medium CVE-2017-15388: Out of bounds read in Skia.
Medium CVE-2017-15389: URL spoofing in OmniBox.
Medium CVE-2017-15390: URL spoofing in OmniBox.
Low CVE-2017-15391: Extension limitation bypass in Extensions.
Low CVE-2017-15392: Incorrect registry key handling in PlatformIntegration.
Low CVE-2017-15393: Referrer leak in Devtools.
Low CVE-2017-15394: URL spoofing in extensions UI.
Low CVE-2017-15395: Null pointer dereference in ImageCapture.
Various fixes from internal audits, fuzzing and other initiatives

© The Huntsville Macintosh Users Group 1995-2018
Apple, the Apple Logo, and Macintosh are registered trademarks of Apple, Inc.
Other names may be registered trademarks of their respective owners.