129.0.6668.5 Sep 18, 2024 New Release This update includes 5 security fixes. Below, we highlight fixes that were contributed by external researchers:
High CVE-2024-8636: Heap buffer overflow in Skia.
High CVE-2024-8637: Use after free in Media Router.
High CVE-2024-8638: Type Confusion in V8.
High CVE-2024-8639: Use after free in Autofill.
As usual, our ongoing internal security work was responsible for a wide range of fixes 128.0.6613.1 Sep 11, 2024 New Release This update includes 5 security fixes. Below, we highlight fixes that were contributed by external researchers:
High CVE-2024-8636: Heap buffer overflow in Skia.
High CVE-2024-8637: Use after free in Media Router.
High CVE-2024-8638: Type Confusion in V8.
High CVE-2024-8639: Use after free in Autofill.
As usual, our ongoing internal security work was responsible for a wide range of fixes 128.0.6613.1 Sep 7, 2024 New Release This update includes 24 security fixes. Below, we highlight fixes that were contributed by external researchers:
High CVE-2024-6988: Use after free in Downloads.
High CVE-2024-6989: Use after free in Loader.
High CVE-2024-6991: Use after free in Dawn.
High CVE-2024-6992: Out of bounds memory access in ANGLE.
High CVE-2024-6993: Inappropriate implementation in Canvas.
Medium CVE-2024-6994: Heap buffer overflow in Layout.
Medium CVE-2024-6995: Inappropriate implementation in Fullscreen.
Medium CVE-2024-6996: Race in frames.
Medium CVE-2024-6997: Use after free in Tabs.
Medium CVE-2024-6998: Use after free in User Education.
Medium CVE-2024-6999: Inappropriate implementation in FedCM.
Medium CVE-2024-7000: Use after free in CSS.
Medium CVE-2024-7001: Inappropriate implementation in HTML.
Low CVE-2024-7003: Inappropriate implementation in FedCM.
Low CVE-2024-7004: Insufficient validation of untrusted input in Safe Browsing.
Low CVE-2024-7005: Insufficient validation of untrusted input in Safe Browsing.
Various fixes from internal audits, fuzzing and other initiatives:
[Merge-127] Enable GenGpuDiskCacheKeyPrefixInGpuService be default
[M127][views-ax] Migrating Role in ui/Views to new system
[M127][views-ax] Fix cached role/name/description out of sync in the cache (//chrome/views)
[M127][views-ax] Fix cached role/name/description out of sync in the cache (//ash)
[M127] [Compose] Announce the popup politely
Use path2d cache flag for clip
[M127 Merge][lens] Update the lens entrypoint synchronously with pref changes
[M127 Merge][lens] Order the persistent entrypoint beside the bookmarks star
[lens] Always suppress the label for the persistent entrypoint
[CP M127][lensoverlay] Make sure overlay is closed after reload
Updating XTBs based on .GRDs from branch 6533
[M127]Update dev mode off-store extension histograms
[CP M127][lensoverlay] Fix tooltip showing on more info menu
[CP M127][lensoverlay] Fix segmentation mask flicker