Google Chrome's Beta channel has been updated to 2.0.172.23. This release includes about 200 changes pulled in from the releases subsequent to 2.0.172.2.

Some highlights for this release:

• Lots of UI tweaks, bug, and stability fixes!
• Added the ability to remove most visited thumbnails from the New Tab page. (Issue: 685)
• Autocomplete now pulls suggestions from search engines that support the functionality, and retains a history of those searches. For example, if you have searched from wikipedia.org in the past, start typing wikipedia.org in the omnibox, press the Tab key then a search term and suggestions and past searches will appear for Wikipedia. (Issue: 3636)
• Added a confirmation box when closing the browser with in progress downloads. (Issue: 1028)
• Added "Reopen closed tab" and create "New Tab" to the context menu on the tab bar. (Issue: 2144)

Please report bugs at http://code.google.com/p/chromium/issues/list.

A detailed list of changes in this release is in the release notes.

Anthony Laforge, PMP

Google Chrome

Google Chrome's Stable channel has been updated to version 1.0.154.65 to fix a crash during startup for a small percentage of users. 


Mark Larson
Google Chrome Program Manager

Google Chrome's Stable channel has been updated to version 1.0.154.64 to fix two security issues discovered by internal Google testing.

This release also contains

• A new notification at startup that makes it easier to set Google Chrome as the default browser. If you don't want Google Chrome to be the default browser, you can click 'Don't ask again'.
• A new version of Gears (0.5.16.0)

Security Fixes

CVE-2009-1441: Input validation error in the browser process.

A failure to properly validate input from a renderer (tab) process could allow an attacker to crash the browser and possibly run arbitrary code with the privileges of the logged on user. To exploit this vulnerability, an attacker would need to be able to run arbitrary code inside the renderer process.

More info: http://code.google.com/p/chromium/issues/detail?id=10869

Severity: Critical. An attacker might be able to run code with the privileges of the logged on user.

Mitigation: An attacker would need to be able to run arbitrary code in the renderer process.

CVE-2009-1442: Integer overflow in Skia 2D graphics.

A failure to check the result of integer multiplication when computing image sizes could allow a specially-crafted image or canvas to cause a tab to crash and it might be possible for an attacker to execute arbitrary code inside the (sandboxed) renderer process.

More info: http://code.google.com/p/chromium/issues/detail?id=10736

Severity: High. An attacker might be able to run arbitrary code within the Google Chrome sandbox.

Mitigations:

• A victim would need to visit a page under an attacker's control.
• Any code that an attacker might be able to run inside the renderer process would be inside the sandbox. Click here for more details about sandboxing.

Mark Larson

Google Chrome Program Manager

Google Chrome 2.0.177.1 has been released to the Dev channel.  

It includes a number of fixes and a couple UI tweaks.  For example, if you have searched from wikipedia.org in the past, start typing wikipedia.org in the omnibox, press the Tab key then a search term and suggestions and past searches will appear for Wikipedia.  Other fixes include:

• [r14196] Scrollbars, Home/End work again in Gmail (Issue: 10009)
• [r14377] Flash (and other plugins) can be installed without restarting the browser. (Issue: 10574)
• [r14137] Fix hang seen in plugin process, including the new O3D plugin. (Issue: 10711)
• [r13934] On some sites text disappears or is never drawn. For example, on Google Calendar, the titles for all day events do not display. (Issue: 9904)

Detailed release notes are available.  You can find out about getting on the Dev channel here: http://dev.chromium.org/getting-involved/dev-channel.

If you find new issues, please let us know by filing a bug at http://code.google.com/p/chromium/issues/entry.

--Jonathan Conradt

Google Chrome Program Manager

Edit (24 April): Removed "Such an attack only works if Chrome is not already running."

Google Chrome's Stable channel has been updated to 1.0.154.59 to fix a security issue:


CVE-2009-1412 ChromeHTML protocol handler same-origin bypass
An error in handling URLs with a chromehtml: protocol could allow an attacker to run scripts of his choosing on any page or enumerate files on the local disk under certain conditions.


If a user has Google Chrome installed, visiting an attacker-controlled web page in Internet Explorer could have caused Google Chrome to launch, open multiple tabs, and load scripts that run after navigating to a URL of the attacker's choice.


See http://code.google.com/p/chromium/issues/detail?id=9860 for more details.


Affected versions: 1.0.154.55 and earlier


Severity: High. This allows universal cross-site scripting (UXSS) without user interaction under certain conditions.


Credit: Roi Saltzman ([email protected]) Security Researcher at IBM Rational Application Security Research Group


--Mark Larson
Google Chrome Program Manager

Google Chrome 2.0.172.8 has been released to the Beta channel to fix two major issues:

• [Issue 9904] On some sites text disappears or is never drawn. For example, on Google Calendar, the titles for all day events do not display.
• [Issue 10656] Google Chrome Beta does not launch after the update to 172.6. This affects users who installed Google Chrome through Google Pack, joined the Beta channel, and do not run as an administrator.

There are no other changes in this release.

If you find new issues, please let us know by filing a bug at http://code.google.com/p/chromium/issues/entry.

--Mark Larson

Google Chrome Program Manager

Google Chrome's Dev channel has been updated to 2.0.174.0.

You can find out about getting on the Dev channel here: http://dev.chromium.org/getting-involved/dev-channel.

Notable Changes:

• Ability to remove thumbnails from the New Tab Page (feature still in development). (Issue: 685)
• Added "Undo Tab Close" and "New Tab" to the context menu on the tab bar. (Issue: 2144)
• It is no longer possible to cut or copy from a password text-field. (Issue: 9425)
• Ctrl+Shift+Arrow allows change in text direction in RTL UIs. Also now support Ctrl+Shift text alignment based on which side of the keyboard those keys are pressed.(Issues: 9762, 9763)

Last Week's Known Issues Fixed:

• Fixed issue where Google Calendar widget was not showing events. (Issue: 8935)

Known Issues:

• Text disappears in certain web applications. For example, labels on all day events in Google calendar do not appear except when moused over. (9904)
• Mouse wheel scrolling does not scroll windows that aren't focused. (9647)
• Vertical scrollbar disappears when maximizing and resizing window in Gmail. (10009)
• Delete history from Incognito mode does not refersh the history page. (Issue: 9984)
• IME issue, form autofill pop-up overlaps the IME candidate window. (Issue: 9596)

Let us know about the issues you find by filing a bug, but please search the open issues first.

A detailed list of changes in this release is in the release notes.

-- Anthony Laforge

Google Chrome Program Manager