Home : Security : News

Google Chrome fixes browser engine flaws

The latest version of Google Chrome needs to be patched to close two security holes, with one described as high risk.

By Asavin Wattanajantra, 11 Jun 2009 at 12:06

Google has released a security patch for its Chrome 2 browser, which closes two flaws in WebKit – the open source browser engine Chrome is built around.

The first fix is for a WebKit memory corruption issue that Google has rated as highly severe. A user visiting a malicious website could have lead to a tab crash or a hacker running code in the Google Chrome sandbox.

The second fix is rated as medium in severity, and is for a WebKit drag and drop information leak, which could lead to the disclosure of sensitive information when content was dragged over a malicious web page.

In May, Google released Chrome 2. It claimed that this version was much faster and more stable.

Chrome’s versions of WebKit and its JavaScript engine were also updated to make the pages run faster.

Microsoft also recently patched up different versions of Internet Explorer, while Apple released Safari 4.0 out of beta.

Email to a friend

Print this page

< Previous Security : News Next >

Be the first to comment on this article

You need to Login or Register to comment.

Latest Security Analysis & Insight

Who to trust after the VeriSign hack?

Davey Winder questions what data was stolen from VeriSign and wonders why the company hasn't been more forthcoming.

More Security Analysis & Insight

Latest Security Reviews

Check Point 2210 Appliance review

Rating:

Check Point's new 2200 Appliances combined enterprise level network security with an SMB price tag. Its software blades provide a wealth of features, but do they complicate deployment? Read this exclusive review to find out.