Google fixes 11 Chrome flaws, debuts stable version 7
Patches autofill crash that hacker's could exploit
Computerworld - Google patched 11 vulnerabilities in Chrome on Thursday as it updated the browser to version 7.
The security update was the fourth since Sept. 2., when Google first boosted Chrome 6 to the "stable" release, the browser's most polished version.
Only one of the bugs patched in Chrome 7.0.517.43 was rated "critical" in Google's four-step threat scoring system, with five tagged as "high." Three others received the "medium" label, while two were pegged as "low."
Google paid out only $1,000 in bounties to two researchers who reported a pair of bugs, the least it's awarded since last June.
As usual, Google locked down its bug tracking database to hide technical details of the vulnerabilities. The company usually unlocks access to a flaw several weeks after a patch ships, to give users time to update before the information goes public.
Other browser makers, including Mozilla, do the same.
The single critical vulnerability was tersely explained as a "browser crash with form autofill." Chrome's developers added autofill only last August. The time-saving feature automatically enters the user's name, address, phone number, e-mail address and credit card number in various Web site forms.
The company's made good on that with Chrome 7, which moved to the stable "channel" -- Google's term for its release editions -- seven weeks after Chrome 6's debut.
Google touted other changes to Chrome that apply to developers -- including full AppleScript support on the Mac and a revamped HTML5 parser -- and said that version 7 also boasted fixes for "hundreds" of non-security bugs.
According to Web metrics company Net Applications, Chrome accounted for 8% of all browsers used last month. At its current pace, Chrome will pass the 10% milestone by the end of the year.
Gregg Keizer covers Microsoft, security issues, Apple, Web browsers and general technology breaking news for Computerworld. Follow Gregg on Twitter at @gkeizer or subscribe to Gregg's RSS feed . His e-mail address is email@example.com.
Read more about Desktop Apps in Computerworld's Desktop Apps Topic Center.
- Gartner Magic Quadrant for Client Management Tools The client management tool market is maturing and evolving to adapt to consumerization, desktop virtualization, and an ongoing need to improve efficiency.
- Path Selection Infographic Path Selection Infographic
- Hyperconvergence Infographic A wide range of observers agree that data centers are now entering an era of "hyperconvergence" that will raise network traffic levels faster...
- Preparing Your Infrastructure for the Hyperconvergence Era From cloud computing and virtualization to mobility and unified communications, an array of innovative technologies is transforming today's data centers.
- Cloud Knowledge Vault Learn how your organization can benefit from the scalability, flexibility, and performance that the cloud offers through the short videos and other resources...
- LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users? All Desktop Apps White Papers | Webcasts