구글크롬Google Chrome 14.0.835.163.m


↗구글크롬Google Chrome 14.0.835.163 m


구글 크롬이 14 버젼으로 업그레이드 되었다 

보안이슈 사항 및  버그들을 수정했다 
구글 크롬에서 버그를 발견하여 전송, 보상프로그램에 의해서  보상금을 지급받는데 
사용자 참여한 버그 개선 의지가 돋보인다 




버그 수정 내용 


[49377] High CVE-2011-2835: Race condition in the certificate cache. Credit to Ryan Sleevi of the Chromium development community.

[51464] Low CVE-2011-2836: Infobar the Windows Media Player plug-in to avoid click-free access to the system Flash. Credit to electronixtar.

[Linux only] [57908] Low CVE-2011-2837: Use PIC / pie compiler flags. Credit to wbrana.

[75070] Low CVE-2011-2838: Treat MIME type more authoritatively when loading plug-ins. Credit to Michal Zalewski of the Google Security Team.

[76771] High CVE-2011-2839: Crash in v8 script object wrappers. Credit to Kostya Serebryany of the Chromium development community.

[78427] [83031] Low CVE-2011-2840: Possible URL bar spoofs with unusual user interaction. Credit to kuzzcc.

[$500] [78639] High CVE-2011-2841: Garbage collection error in PDF. Credit to Mario Gomes.

[Mac only] [80680] Low CVE-2011-2842: Insecure lock file handling in the Mac installer. Credit to Aaron Sigel of vtty.com.

[82438] Medium CVE-2011-2843: Out-of-bounds read with media buffers. Credit to Kostya Serebryany of the Chromium development community.

[85041] Medium CVE-2011-2844: Out-of-bounds read with mp3 files. Credit to Mario Gomes.

[$1000] [89219] High CVE-2011-2846: Use-after-free in unload event handling. Credit to Arthur Gerkis.

[$1000] [89330] High CVE-2011-2847: Use-after-free in document loader. Credit to miaubiz.

[$500] [89564] Medium CVE-2011-2848: URL bar spoof with forward button. Credit to Jordi Chancel.

[89795] Low CVE-2011-2849: Browser NULL pointer crash with WebSockets. Credit to Arthur Gerkis.

[$500] [89991] Medium CVE-2011-3234: Out-of-bounds read in box handling. Credit to miaubiz.

[90134] Medium CVE-2011-2850: Out-of-bounds read with Khmer characters. Credit to miaubiz.

[90173] Medium CVE-2011-2851: Out-of-bounds read in video handling. Credit to Google Chrome Security Team (Inferno).

[$500] [91120] High CVE-2011-2852: Off-by-one in v8. Credit to Christian Holler.

[91197] High CVE-2011-2853: Use-after-free in plug-in handling. Credit to Google Chrome Security Team (SkyLined).

[$1000] [92651] [94800] High CVE-2011-2854: Use-after-free in ruby / table style handing. Credit to Sławomir Błażek, and independent later discoveries by miaubiz and Google Chrome Security Team (Inferno).

[$1000] [92959] High CVE-2011-2855: Stale node in stylesheet handling. Credit to Arthur Gerkis.

[$2000] [93416] High CVE-2011-2856: Cross-origin bypass in v8. Credit to Daniel Divricean.

[$1000] [93420] High CVE-2011-2857: Use-after-free in focus controller. Credit to miaubiz.

[$1000] [93472] High CVE-2011-2834: Double free in libxml XPath handling. Credit to Yang Dingning from NCNIPC, Graduate University of Chinese Academy of Sciences.

[93497] Medium CVE-2011-2859: Incorrect permissions assigned to non-gallery pages. Credit to Bernhard ‘Bruhns’ Brehm of Recurity Labs.

[$1000] [93587] High CVE-2011-2860: Use-after-free in table style handling. Credit to miaubiz.

[93596] Medium CVE-2011-2861: Bad string read in PDF. Credit to Aki Helin of OUSPG.

[$2337] [93906] High CVE-2011-2862: Unintended access to v8 built-in objects. Credit to Sergey Glazunov.

[95563] Medium CVE-2011-2864: Out-of-bounds read with Tibetan characters. Credit to Google Chrome Security Team (Inferno).

[95625] Medium CVE-2011-2858: Out-of-bounds read with triangle arrays. Credit to Google Chrome Security Team (Inferno).

[95917] Low CVE-2011-2874: Failure to pin a self-signed cert for a session. Credit to Nishant Yadant of VMware and Craig Chamberlain (@randomuserid).

[$1000] [95920] High CVE-2011-2875: Type confusion in v8 object sealing. Credit to Christian Holler.



구글크롬브라우져는 버그가 수정되고 버젼이 업데이트 될때마다 설치파일 용량이 증가되는 것을 볼 수 있고
메모리 점유율 chrome.exe 파일이 많이 떠 있는것을 확인 할 수 있으며
점점 안정화 단계로 다가가고 있다  

참고로 파폭은 실행파일이 달랑 한개만 프로세서 점유율을 가지고 있다는 것인데 처음  프로세서 메모리 
점유율을 살펴 보면 크롬이 약간 높다 
 




구글크롬(Google Chrome 14) 웹브라우져 
http://www.google.com/chrome?hl=ko
저작자 표시 비영리 변경 금지
신고