204 replies to this topic

[AplusWebMaster]

FYI...

Chrome 53.0.2785.89 released
- https://googlechrome...desktop_31.html
Aug 31, 2016 - "The Chrome team is delighted to announce the promotion of Chrome 53 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks. Chrome 53.0.2785.89 contains a number of fixes and improvements... This update includes -33- security fixes..."
___

- http://www.securityt....com/id/1036729
CVE Reference: CVE-2016-5147, CVE-2016-5148, CVE-2016-5149, CVE-2016-5150, CVE-2016-5151, CVE-2016-5152, CVE-2016-5153, CVE-2016-5154, CVE-2016-5155, CVE-2016-5156, CVE-2016-5157, CVE-2016-5158, CVE-2016-5159, CVE-2016-5160, CVE-2016-5161, CVE-2016-5162, CVE-2016-5163, CVE-2016-5164, CVE-2016-5165, CVE-2016-5166, CVE-2016-5167
Sep 3 2016
Fix Available:  Yes  Vendor Confirmed:  Yes
Impact: A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.
A remote user can bypass security controls on the target system.
A remote user can spoof a URL.
A remote user can access the target user's cookies (including authentication cookies), if any, associated with the target site, access data recently submitted by the target user via web form to the site, or take actions on the site acting as the target user.
Solution: The vendor has issued a fix (53.0.2785.89 for Windows, Mac; 53.0.2785.92 for Linux)...
___

- https://www.us-cert....y-Update-Chrome
Aug 31, 2016
 

Edited by AplusWebMaster, 05 September 2016 - 08:17 AM.

[AplusWebMaster]

FYI...

Chrome 53.0.2785.113 released
- https://googlechrome...desktop_13.html
Sep 13, 2016 - "The stable channel has been updated to 53.0.2785.113 for Windows, Mac, and Linux. This will roll out over the coming days/weeks...
Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.
This update includes... security fixes..."
___

Google Releases Security Update for Chrome
> https://www.us-cert....y-Update-Chrome
Sep 14, 2016 - "Google has released Chrome version 53.0.2785.113 to address multiple vulnerabilities for Windows, Mac, and Linux. Exploitation of some of these vulnerabilities may allow an attacker to take control of an affected system..."
 

[AplusWebMaster]

FYI...

Chrome 53.0.2785.143 released
- https://googlechrome...desktop_29.html
Sep 29, 2016 - "The stable channel has been updated to 53.0.2785.143 for Windows, Mac, and Linux. This will roll out over the coming days/weeks... This update includes -3- security fixes...
High CVE-2016-5177: Use after free in V8...
CVE-2016-5178: Various fixes from internal audits, fuzzing and other initiatives..."
___

- http://www.securityt....com/id/1036970
CVE Reference: CVE-2016-5177, CVE-2016-5178
Oct 6 2016
Fix Available:  Yes  Vendor Confirmed:  Yes ...  
Impact: A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.
Solution: The vendor has issued a fix (53.0.2785.143)...
___

- https://www.us-cert....y-Update-Chrome
Sep 30, 2016
 

Edited by AplusWebMaster, 10 October 2016 - 02:43 AM.

[AplusWebMaster]

FYI...

Chrome 54.0.2840.59 released
- https://googlechrome...or-desktop.html
Oct 12, 2016 - "The Chrome team is delighted to announce the promotion of Chrome 54 to the stable channel - 54.0.2840.59 for Windows, Mac, and Linux. This will roll out over the coming days/weeks... This update includes -21- security fixes..."
High: CVE-2016-5181, CVE-2016-5182, CVE-2016-5183, CVE-2016-5184, CVE-2016-5185, CVE-2016-5187
___

- https://www.us-cert....y-Update-Chrome
Oct 13, 2016
 

[AplusWebMaster]

FYI...

Chrome 54.0.2840.87 released
- https://googlechrome...or-desktop.html
Nov 1, 2016 - "The stable channel has been updated to 54.0.2840.87 for Windows, Mac, and 54.0.2840.90 for Linux. This will roll out over the coming days/weeks..."
High CVE-2016-5198
___

- http://www.securityt....com/id/1037224
CVE Reference: https://cve.mitre.or...e=CVE-2016-5198
Nov 4 2016
Impact: Not specified
Fix Available:  Yes  Vendor Confirmed:  Yes
Solution: The vendor has issued a fix (54.0.2840.87 for Windows, Mac; 54.0.2840.90 for Linux)...
___

- https://www.us-cert....-Updates-Chrome
Nov 2, 2016
 

Edited by AplusWebMaster, 05 November 2016 - 06:32 AM.

[AplusWebMaster]

FYI...

Chrome 54.0.2840.99 released
- https://googlechrome.../Stable updates
Nov 9, 2016 - "The stable channel has been updated to 54.0.2840.99 for Windows and 54.0.2840.98 for Mac. Linux has additional changes in the pipeline and is planned to be pushed tomorrow. For all platforms this will roll out over the coming days/weeks...
This update includes -4- security fixes..."
High CVE-2016-5199
High CVE-2016-5200
___

- http://www.securityt....com/id/1037273
CVE Reference: CVE-2016-5199, CVE-2016-5200, CVE-2016-5201, CVE-2016-5202
Nov 11 2016
Fix Available:  Yes  Vendor Confirmed:  Yes
Impact: A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.
A remote user can obtain potentially sensitive information on the target system.
Solution: The vendor has issued a fix (54.0.2840.99 for Windows; 54.0.2840.98 for Mac; 54.0.2840.100 on Linux)...
___

- https://www.us-cert....-Updates-Chrome
Nov 10, 2016
 

Edited by AplusWebMaster, 11 November 2016 - 04:59 AM.

[AplusWebMaster]

FYI...

Chrome 55.0.2883.75 released
- https://googlechrome...or-desktop.html
Dec 1, 2016 - " The Chrome team is delighted to announce the promotion of Chrome 55 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks. Chrome 55.0.2883.75 contains a number of fixes and improvements... This update includes 36 security fixes..."
___

- https://www.us-cert....-Updates-Chrome
Dec 1, 2016
 

[AplusWebMaster]

FYI...

Chrome 55.0.2883.105 released
- https://chromereleas...-chrome-os.html
Jan 10, 2017 - "The Stable channel has been updated to 55.0.2883.105 (Platform version: 8872.76.0) for all Chrome OS devices. This build contains a number of bug fixes and security updates. Systems will be receiving updates over the next several days..."

- https://krebsonsecur...curity-fixes-9/
"... When in doubt with Chrome, click the vertical three dot icon to the right of the URL bar, select “Help,” then “About Chrome”: If there is an update available, Chrome should install it then. In either case, be sure to restart the browser after installing an update (if it doesn’t do that for you)..."
___

> https://it.slashdot....hrome-extension
Jan 11, 2017 - "The latest Adobe Acrobat Reader security update (15.023.20053), besides delivering security updates, also secretly installs the Adobe Acrobat extension in the user's Chrome browser. There is no mention of this "special package" on Acrobat's changelog, and surprise-surprise, the extension comes with anonymous-data-collection turned -on- by default..."
* https://www.bleeping...wser-extension/
Jan 11, 2017
 

Edited by AplusWebMaster, 12 January 2017 - 12:19 PM.

[AplusWebMaster]

FYI...

Chrome 56.0.2924.76 released
- https://chromereleases.googleblog.com/
Jan 25, 2017 - "The Chrome team is delighted to announce the promotion of Chrome 56 to the stable channel - 56.0.2924.76 for Windows, Mac and Linux. This will roll out over the coming days/weeks. Chrome 56.0.2924.76 contains a number of fixes and improvements... This update includes -51- security fixes..."
___

- http://www.securityt....com/id/1037718
CVE Reference: CVE-2017-5006, CVE-2017-5007, CVE-2017-5008, CVE-2017-5009, CVE-2017-5010, CVE-2017-5011, CVE-2017-5012, CVE-2017-5013, CVE-2017-5014, CVE-2017-5015, CVE-2017-5016, CVE-2017-5017, CVE-2017-5018, CVE-2017-5019, CVE-2017-5020, CVE-2017-5021, CVE-2017-5022, CVE-2017-5023, CVE-2017-5024, CVE-2017-5025, CVE-2017-5026
Jan 26 2017
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): prior to 56.0.2924.76 ...
Impact: A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.
A remote user can obtain potentially sensitive information on the target system.
A remote user can spoof the address bar and the user interface.
A remote user can access the target user's cookies (including authentication cookies), if any, associated with an arbitrary site, access data recently submitted by the target user via web form to the site, or take actions on the site acting as the target user.
Solution: The vendor has issued a fix (56.0.2924.76)...
___

- https://www.us-cert....-Updates-Chrome
Jan 25, 2017
 

Edited by AplusWebMaster, 27 January 2017 - 04:25 AM.

[AplusWebMaster]

FYI...

Chrome 57.0.2987.98 released
- https://chromereleas...or-desktop.html
Mar 9, 2017 - "The Chrome team is delighted to announce the promotion of Chrome 57 to the stable channel - 57.0.2987.98 for Windows, Mac and Linux... This update includes 36 security fixes..."
___

- https://www.us-cert....y-Update-Chrome
Mar 9, 2017
 

[AplusWebMaster]

FYI...

Chrome 57.0.2987.133 released
- https://chromereleas...desktop_29.html
March 29, 2017 - "The stable channel has been updated to 57.0.2987.133 for Windows, Mac, and Linux...
This update includes 5 security fixes..."
___

- https://www.us-cert....-Updates-Chrome
March 30, 2017
 

[AplusWebMaster]

FYI...

Chrome 58.0.3029.81 released
- https://chromereleas...or-desktop.html
April 19, 2017 - "The Chrome team is delighted to announce the promotion of Chrome 58 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks. Chrome 58.0.3029.81 contains a number of fixes and improvements... This update includes -29- security fixes..."
___

- http://www.securityt....com/id/1038317
CVE Reference: CVE-2017-5057, CVE-2017-5058, CVE-2017-5059, CVE-2017-5060, CVE-2017-5061, CVE-2017-5062, CVE-2017-5063, CVE-2017-5064, CVE-2017-5065, CVE-2017-5066, CVE-2017-5067, CVE-2017-5069
Apr 20 2017
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): prior to 58.0.3029.81 ...
Impact: A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.
A remote user can bypass cross-origin restrictions on the target system.
A remote user can spoof a URL.
Solution: The vendor has issued a fix (58.0.3029.81)...
___

- https://www.us-cert....-Updates-Chrome
April 19, 2017
 

[AplusWebMaster]

FYI...

Chrome 58.0.3029.96 released
- https://chromereleas...or-desktop.html
May 2, 2017 - "The stable channel has been updated to 58.0.3029.96 for Windows, Mac, and Linux... In order to improve stability, performance, and security, users who are currently on 32-bit version of Chrome, and 64-bit Windows with 4GB or more of memory and auto-update enabled will be automatically migrated to 64-bit Chrome during this update. 32-bit Chrome will still be available via the Chrome download page...
This update includes 1 security fix..."

- https://www.us-cert....-Updates-Chrome
May 02, 2017 - "Google has released Chrome version 58.0.3029.96 for Windows, Mac, and Linux. This version addresses a vulnerability that an attacker could exploit to cause a denial-of-service condition..."
___

Chrome 58.0.3029.110 released
- https://chromereleas...-desktop_9.html
May 9, 2017 - "The stable channel has been updated to 58.0.3029.110 for Windows, Mac, and Linux..."
 

Edited by AplusWebMaster, 01 June 2017 - 10:41 AM.

[AplusWebMaster]

FYI...

Chrome 59.0.3071.86 released
- https://chromereleas...or-desktop.html
June 5, 2017 - " The Chrome team is delighted to announce the promotion of Chrome 59 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks. Chrome 59.0.3071.86 contains a number of fixes and improvements... This update includes 30 security fixes..."
___

- https://www.us-cert....-Updates-Chrome
June 06, 2017
___

- http://www.securityt....com/id/1038622
CVE Reference: CVE-2017-5070, CVE-2017-5071, CVE-2017-5072, CVE-2017-5073, CVE-2017-5074, CVE-2017-5075, CVE-2017-5076, CVE-2017-5077, CVE-2017-5078, CVE-2017-5079, CVE-2017-5080, CVE-2017-5081, CVE-2017-5082, CVE-2017-5083, CVE-2017-5085, CVE-2017-5086
Jun 7 2017
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): prior to 59.0.3071.86 ...
Impact: A remote user can create content that, when loaded by the target user, will execute arbitrary code on the target user's system.
A remote user can obtain potentially sensitive information on the target system.
A remote user can spoof a URL.
Solution: The vendor has issued a fix (59.0.3071.86)...
 

Edited by AplusWebMaster, 07 June 2017 - 03:55 AM.

[AplusWebMaster]

FYI...

Chrome 59.0.3071.104 released
- https://chromereleas...desktop_15.html
June 15, 2017 - "The stable channel has been updated to 59.0.3071.104 for Windows, Mac, and Linux. This will roll out over the coming days/weeks... This update includes 5 security fixes...

- http://www.securityt....com/id/1038765
CVE Reference: CVE-2017-5087, CVE-2017-5088, CVE-2017-5089
Jun 22 2017
Fix Available:  Yes  Vendor Confirmed:  Yes  ...
Impact: A remote user can bypass sandbox security controls on the target system.
A remote user can obtain potentially sensitive information on the target system.
A remote user can spoof a domain.
Solution: The vendor has issued a fix (59.0.3071.104)...
___

- https://www.us-cert....-Updates-Chrome
June 15, 2017
___

Chrome - Stable Channel Update for Desktop - 59.0.3071.115
- https://chromereleas...desktop_26.html
June 26, 2017 - "The stable channel has been updated to 59.0.3071.115 for Windows, Mac, and Linux. This will roll out over the coming days/weeks..."
 

Edited by AplusWebMaster, 21 July 2017 - 04:31 AM.