Chrome build 61.0.3163.100 is now rolling out to desktop users of the browser on Windows, Mac and Linux. The update is purely a security fix and performance update with no noted new features.
The update addresses three security issues in the browser, two of which were discovered as part of Google’s continuing bounty program. Those fixes, including the reward given to the one who found it, is below.
- [$7500] High CVE-2017-5121: Out-of-bounds access in V8. Reported by Jordan Rabet, Microsoft Offensive Security Research and Microsoft ChakraCore team on 2017-09-14
- [$3000] High CVE-2017-5122: Out-of-bounds access in V8. Reported by Choongwoo Han of Naver Corporation on 2017-08-04
The other critical security issue found was found internally and no details were reported on it in the Release Notes.