Google Resolves Five Dangerous Vulnerabilities in Chrome 57 Stable Channel Update for Desktop
Google released an update for its Chrome web browser aimed at tackling vulnerabilities. The update fixes a total of five severe vulnerabilities; wherein one is marked as ‘critical’ and the other four as ‘high risk.’ The update version is Chrome 57.0.2987.133.
The stable Chrome 57.0.2987.133 update is released for Windows, Mac, and Linux users, it arrives just a few weeks after the version 57 browser found its stability. The update brings a handful of enhancements to the overall functionality of the browser. The last update brought features like CSS Grid Layout and also patched 36 vulnerabilities. The latest Chrome 57.0.2987.133 update addresses five lethal vulnerabilities.
It resolves the most severe ‘Critical Use’ bug that was causing issues in printing. The bug was identified by the bug bounty hunter Wadih Matar, who is awarded a $9,337 bounty finding it out. The other four ‘high risk’ bugs include Heap buffer overflow in V8 (CVE-2017-5054), which was found another bug hunter Nicolas Trippar of Zimperium zLabs, he also received $3000 as the bounty prize. Another such bug was Bad cast in Blink (CVE-2017-5052), which was identified by JeongHoon Shin, who got a bounty prize of $1000.
The other ‘high risk’ bug was Blink (CVE-2017-5056), which was found by an anonymous researcher. And the last one was Out of bounds memory access in V8 (CVE-2017-5053), which was discovered by Team Sniper (Keen Lab and PC Mgr) and tipped by ZDI (ZDI-CAN-4587). For these two bugs, Google’s advisory did not reveal the bounty prize.
To recall, Chrome for Android (57.0.2987.132) also debuted this week and it also tackled a vulnerability in Blink (CVE-2017-5056). Admittedly, in January Google rolled out Chrome 56 stable update that resolved 51 vulnerabilities. After releasing the January update, Google announced that Gmail will no longer support Chrome version 53 and below, which was a major setback for Windows XP and Vista users. For these users, the last Chrome update was Chrome 49.
The Chrome 59 update that was released recently brought new functionalities such as more controls for Custom Tabs. It also included support for web apps access to Android app’s drawer along with system features and notifications panel.
Chrome is becoming better with each update, it remains to be seen how Google plans on combating the security issues that pop up every now and then.