The Chrome team is delighted to announce the promotion of Chrome 45 to the stable channel for Windows, Mac and Linux.
Chrome 45.0.2454.85 contains a number of fixes and improvements -- a list of changes is available in the log. Watch out for upcoming Chrome and Chromium blog posts about new features and big efforts delivered in 45.
Security Fixes and Rewards
Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.
This update includes 29 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chromium security page for more information.
[$7500][516377] High CVE-2015-1291: Cross-origin bypass in DOM. Credit to anonymous.
[$7500][522791] High CVE-2015-1292: Cross-origin bypass in ServiceWorker. Credit to Mariusz Mlynski.
[$7500][524074] High CVE-2015-1293: Cross-origin bypass in DOM. Credit to Mariusz Mlynski.
[$5000][492263] High CVE-2015-1294: Use-after-free in Skia. Credit to cloudfuzzer.
[$3000][502562] High CVE-2015-1295: Use-after-free in Printing. Credit to anonymous.
[$1000][421332] High CVE-2015-1296: Character spoofing in omnibox. Credit to zcorpan.
[$3000][510802] Medium CVE-2015-1297: Permission scoping error in WebRequest. Credit to Alexander Kashev.
[$3000][518827] Medium CVE-2015-1298: URL validation error in extensions. Credit to Rob Wu.
[$2000][416362] Medium CVE-2015-1299: Use-after-free in Blink. Credit to taro.suzuki.dev.
[$1000][511616] Medium CVE-2015-1300: Information leak in Blink. Credit to cgvwzq.
We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel. The total value of additional rewards and their recipients will updated here when all reports have gone through the reward panel.
As usual, our ongoing internal security work was responsible for a wide range of fixes:
- [526825] CVE-2015-1301: Various fixes from internal audits, fuzzing and other initiatives.
- Multiple vulnerabilities in V8 fixed at the tip of the 4.5 branch (currently 4.5.103.29).
Many of the above bugs were detected using AddressSanitizer or MemorySanitizer.
Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.
Vivian Zhi
Google Chrome
43 comments:
Has NPAPI support been extended? I thought this was supposed to be gone in 45.
NPAPI is gone for good.
Also received Chrome 45.0.2454.84 for Android.
On http://html5test.com/ i get 521 points, because in the area "Input", the "Pointer events" stand on no.
But why is here no? I thought the "Pointer Events" should now be set to yes.
Is flash still enabled by default?
BTW, Hash sum mismatch error on Ubuntu 14.04.3 64-bit. This seems to happen every few releases :)
W: Failed to fetch http://dl.google.com/linux/chrome/deb/dists/stable/main/binary-amd64/Packages Hash Sum mismatch
W: Failed to fetch http://dl.google.com/linux/chrome/deb/dists/stable/main/binary-i386/Packages Hash Sum mismatch
E: Some index files failed to download. They have been ignored, or old ones used instead.
update attempt from Ubuntu: failure
W: Failed to fetch http://dl.google.com/linux/chrome/deb/dists/stable/main/binary-amd64/Packages Hash Sum mismatch
W: Failed to fetch http://dl.google.com/linux/chrome/deb/dists/stable/main/binary-i386/Packages Hash Sum mismatch
Google searches on this problem suggest an out of date file on the server.
Tested on 3 different machines.
Chrome 45 on my Windows 7 keeps crashing at startup.
Well, as my major source of streaming subscription TV here in the UK, payments via my bank debit card online and many Paypal payments all still need Silverlight, and none of those three major UK companies have any intention of changing, this is where Google lose me. I'm off to download Firefox. 'Bye Google.
Since updating to version 45.0.2454.85 on Ubuntu 12.04 LTS ...
After exiting Chrome, the process "/opt/google/chrome/chrome"
plus 2 instances of the "cat" process are still running ...
Then, upon re-launching Chrome, a dialog opens stating:
"Your profile could not be opened correctly."
"Some features may be unavailable. Please check that the profile exists and you have permission to read and write its contents."
@DavidGB
Firefox will also drop NPAPI support at some point. Those companies need to move on.
Stable channel updates are better than dev or beta updates. Offers a stable platform to work in.
software development company in Gurgaon
I'm still getting unresponsive behavior on Windows 10 x64. I installed the x64 over version 44 via Google Update and occasionally I have to minimize and maximize the window just to be able to type text into the address bar/search box and/or forms.... No extensions or extra plugins installed... Most peculiar behavior.
@Heinz Witt Pointer events is not supported on your device because it isn't touch capable. See issue https://code.google.com/p/chromium/issues/detail?id=352942
Im getting a significant error, CAN'T EVEN START Chrome it shows error (stopped responding) itself after updating newest version 45. Windows 7 service pack1 64 bits.
@Mike T, go to the Settings, click on "Show advanced settings...", scroll down to the "System" section, and untick the checkbox on the left of "Continue running background apps when Google Chrome is closed".
@ l33t4g - I also thought that the System Setting you referred to - the checkbox on the left of "Continue running background apps when Google Chrome is closed" might have been the problem - and looked at it before posting above.
The check box is still unticked - as it was before I installed the update.
Since Google Chrome 45, my Chrome always crashes at start.
It doesn't respons anymore and Windows want to search for a solution.
OS: Windows 7 Home Premium Service Pack 1 64bit
Latest Browser version 45.xx freezes at start and Windows (with a message screen) insists on closing it . W8.1 64 bit
For those of you crashing immediately, the Help Forum thread @ https://productforums.google.com/forum/#!topic/chrome/R76JTWaBHpw;context-place=forum/chrome might be of assistance. If not, please post a new topic there with symptoms, or file a bug and reply back here with the #.
It appears that the pausing Flash change hasn't been added to Chrome 45 http://chrome.blogspot.co.uk/2015/06/better-battery-life-for-your-laptop.html . Any insights into this??
Is anyone who is getting crashes at startup using Comodo?
That might be related.
Alex ,
just to update that the Comodo D+/Hips fixed it for me ; tho' not for everyone . Thank you.
@My YT,
Crashes on startup with Comodo CIS is a problem with Comodo's hooking in guard32.dll
Chrome bug: Comodo antivirus hooks break Chrome 45
Comodo user forum report: guard32.dll kills Chrome 45
Andrew Delirious, that functionality is slowly rolling out to the stable channel in a staged capacity, it will be enabled by default for everyone in the coming days.
About Last Update Google Chrome 2015, If you don't find the solution, maybe you need to try this simple way Simple Way to Fix Google Chrome Updated 2015
With chrome://flags/#enable-tab-audio-muting enabled you now cannot mute _pinned_ tab without switching to it.
Ok, got a point. i am also using Comodo firewall, that might be a problem. Im just sticking with version 44 yet.
One problem I note with Chrome 45 that worked in Chrome 44:
Javascript URLs stopped working. Maybe this is a security feature, but I like to use javascript URLs for quick calculations like:
javascript:new Date(1441286159515)
To translate a System.currentTimeMillis() to a readable date.
why i have still Google chrome crashing on me ?
v45.0.2454.85 constantly crash for me. Is it intentional for some reason?
Had to revert to previous version.
My version 'v45.0.2454.85 m' has problems of layout in Zimbra Webmail.
This version of Chrome freezes upon closing a tab. Very frustrating! Please, fix it!
is this version https2 enabled?
Great to have the security fixes and enhanced dev tools - thank you! We have seen a layout issue introduced in this release - specifically, tables are not rendering correctly. Previous Chrome version and all other competitor browsers all OK. Hope the problem can be patched soon :)
@Mike T we are seeing the same symptoms ("Your profile could not be opened correctly.") on many, if not all, of our Ubuntu 12.04 systems.
Chrome seems to launch OK the first time, but it doesn't quit after the end user closes the last tab/window. Subsequent Chrome launches fail with the above error since the database is still locked by the initial Chrome incarnation.
If you run htop you can press F4, type "chrome" then type "k" (and hit enter) as many times as necessary until the last instance of Chrome quits. Then you can launch it again with no error message.
This behavior is independent of the "continue running background tasks" checkbox. It's a pretty annoying bug.
Hello,
Since upgrading to this verions of Chrome, when I resize a window - it is very slow and laggy rendering.
I have a black window of the area that is not yet resized, my scrollbar disappears and it is not as fast as it was with the previous version, but slow and very visible..
I didnt have any of this issues with the previous version
Im running over Windows 7 64bit, the Chrome version is 45.0.2454.85 m (64-bit)
Version : 45.0.2454.85 m
Problem with layout in Zimbra webmail
Version : 45.0.2454.85 m
Problem with layout in Zimbra webmail.
Users are switching to Firefox :-(
My version 'v45.0.2454.85 m' has problems of layout in Zimbra Webmail. Really makes it difficult to use -- I may have to move to Firefox -- yikes!
After update Chrome i have problem with table-layout: fixed;. Its count wrong div width. Its visible on pages www.annonce.cz/osobni-auta.html on left panel.
Start from M45, Chrome no longer support NPAPI plugins. Zimbra webmail use NPAPI plugin, therefore it will not working properly with Chrome 45. Please find Chrome support note for detail explanation.
https://support.google.com/chrome/answer/6213033?hl=en
I tried to access an internal company website that I was able to access with no problems a couple of days ago, but now I get the following error message: Server has a weak ephemeral Diffie-Hellman public key. Is there a way this can be fixed, I can override this error, or revert back to the previous version of Chrome where I did not have this problem?
Thank you,
Ruth
Post a Comment