Network Security, Patch/Configuration Management, Vulnerability Management

Google Chrome desktop update mends 36 vulnerabilities

Google on Thursday announced an update to the desktop version of its Chrome web browser, including security fixes for 36 vulnerabilities, 15 of which were designated as high severity.

In totally, the repairs are worth at least $70,000 in bug bounty rewards paid to external researchers. (Not all payout amounts were listed.) Some of the more serious errors were classified as private property access in V8, universal cross-site scripting in Blink, same-origin bypass in PDFium, out-of-bounds writes in Blink and PDFium, use-after-free in PDFium and V8, and local file disclosure in DevTools.

This newest stable-channel release – version 55.0.2883.75 for Windows, Mac and Linux – will roll out over the coming days and weeks, the company announced on its Chrome Releases blog page.

Bradley Barth

As director of multimedia content strategy at CyberRisk Alliance, Bradley Barth develops content for online conferences, webcasts, podcasts video/multimedia projects — often serving as moderator or host. For nearly six years, he wrote and reported for SC Media as deputy editor and, before that, senior reporter. He was previously a program executive with the tech-focused PR firm Voxus. Past journalistic experience includes stints as business editor at Executive Technology, a staff writer at New York Sportscene and a freelance journalist covering travel and entertainment. In his spare time, Bradley also writes screenplays.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.