Chrome Browser for PC and Mac Sees Another Security Update

If you are using the Chrome Browser on your Windows, Mac or Linux PC, there is a new and important update out for you.  The update addresses five critical security issues that have been fixed and all users are encouraged to update to the latest version.  The build you are looking for is 49.0.2623.108 and you can see what version you have and get the update downloaded to your device by going to chrome://help in the browser and it will automatically start downloading the update for you.  Once it is downloaded, you will need to restart the browser for the changes to take effect (but not reboot your computer).

As for what is addressed, the Chromium team as they usually do has kept it under wraps until a majority of users have updated to the new build.  That said, they have released the externally sourced bugs and the bounties paid on those bugs to hackers/developers who found them.

[$7500][594574] High CVE-2016-1646: Out-of-bounds read in V8. Credit to Wen Xu from Tencent KeenLab.

Google Chrome for PC

Google Chrome for PC

[$5500][590284] High CVE-2016-1647: Use-after-free in Navigation. Credit to anonymous.
[$5000][590455] High CVE-2016-1648: Use-after-free in Extensions. Credit to anonymous.
[595836] High CVE-2016-1649: Buffer overflow in libANGLE. Credit to lokihardt working with HP’s Zero Day Initiative / Pwn2Own.
As for Chrome OS users, don’t be surprised if you see an update to that platform at some point this week.  Generally the update to the Chrome Browser is first followed by Chrome OS and the Chrome for Android.  I don’t expect it to be any different this time around either.
Interestingly, this is the second month in a row there has been a mid-month security update on Chrome.  While some may look at that with some concern, for me at least, it makes me comfortable using the platform as I know there are constant security updates to it.  That, in my mind, isn’t a bad thing.


%d bloggers like this: