Google releases Chrome 19, adds tab sync and patches 20 bugs
Open-tab sync matches Firefox feature that debuted in 2011
Computerworld - Google on Tuesday released Chrome 19, patched 20 vulnerabilities in the browser and doled out $16,500 in bug bounties and rewards to independent researchers.
Chrome 19's most obvious change is the new support for tab synchronization. Like the already available bookmark, password, app and extension sync, open tabs will now be kept in step on all copies of Chrome, on multiple platforms, including Android, that are linked to the same Google account.
Although Chrome 19 supports the feature, synchronization will not be enabled for all users immediately, said Raz Mathias, a Chrome software engineer. "The tab sync feature will be rolled out gradually over the coming weeks, Mathias said in a Tuesday blog.
Chrome is not breaking ground here.
Chrome was last upgraded seven weeks ago. Google releases a new "stable" version about every six to eight weeks and has been on a slightly slower schedule recently than rival Mozilla's strict every-six-weeks tempo.
Chrome 19 also includes patches for 20 security vulnerabilities: Eight were ranked "high," Google's second-most-serious threat rating, seven were marked "medium," and five were labeled "low."
Seven of the vulnerabilities were described in Google's brief advisory as "out-of-bounds" read or write flaws, a category of memory bugs where a function does not check that input doesn't exceed allocated buffers.
Google paid $7,500 in bounties to six researchers for reporting nine vulnerabilities, including two that were not strictly within Chrome. One of the latter was a bug in a Linux Nvidia driver, for example.
The 11 remaining bugs were uncovered by Google's own security team or were credited to Microsoft, or were not significant enough to rate a bounty.
Google also handed over an additional $9,000 to half-a-dozen researchers, some of whom collected other cash rewards, for reporting bugs that were patched by Google earlier in Chrome 19's development process.
So far this year, Google has paid more than $230,000 to outside researchers for submitting Chrome vulnerabilities. More than half of that -- $120,000 -- was laid out in March at "Pwnium," a Google-sponsored hacking challenge.
Tuesday's update was the 13th this year that patched one or more vulnerabilities.
According to the latest figures from metric company Net Applications, Chrome has a usage share of about 19%. Irish measurement firm StatCounter, on the other hand, pegged Chrome's share for April at 31%.
Chrome 19 can be downloaded for Windows, Mac OS X and Linux from Google's website. The browser is updated automatically through its silent service.
Gregg Keizer covers Microsoft, security issues, Apple, Web browsers and general technology breaking news for Computerworld. Follow Gregg on Twitter at @gkeizer, on Google+ or subscribe to Gregg's RSS feed . His email address is email@example.com.
Read more about Desktop Apps in Computerworld's Desktop Apps Topic Center.
- The Business Value of Continuous Delivery Download this whitepaper to learn more about the business value of Continuous Delivery and see why it could be a game changer for...
- Ten Factors Shaping the Future of Application Delivery Download this research report conducted by Enterprise Management Associates (EMA) to learn how those that are seeking to accelerate application delivery are leveraging...
- HTTP Status Code Cheat Sheet Look at the Graph, Find the Code and Boom - You're Solving Problems. Identifying and understanding common HTTP status codes can go a...
- Architects lead the next generation of data-driven applications Read this whitepaper to find out how application architects can quickly and confidently deliver long-lasting applications that minimize cost, complexity, and risk while...
- NSS Labs & Cisco Present: Evaluating Leading Breach Detection Systems Today's constantly evolving advanced malware and APTs can evade point-in-time defenses to penetrate networks. Security professionals must evolve their strategy in lockstep to...
- Will the Real Endpoint Threat Detection and Response Please Stand Up? This webinar explores new technologies & process for protecting endpoints from advanced attackers as well as the innovations that are pushing the envelope... All Desktop Apps White Papers | Webcasts