Google Chrome releases stable channel update
The update patches two high ranked vulnerabilities and three medium ranked bugs.
A stable channel update for Google Chrome's desktop applications for Windows, Mac and Linux release Tuesday patches two high-ranked vulnerabilities, each described as “use after free in Blink” and credited to an anonymous researcher, and three medium-ranked bugs described as an arbitrary memory read in v8, extension resource access, and popup not correctly suppressed, according to a Sept. 13 blog post.
The post noted that some details concerning the flaws will be kept secret until a majority of users have updated with a fix or if the flaw exist in a third party library which other projects depend on but haven't yet patched. Users are encouraged to update to version 53.0.2785.113 which is set to roll out in the coming days and weeks.
Several of the bugs were spotted using open source products including AddressSanitizer, MemorySanitizer, Control Flow Integrity and LibFuzzer.