Google has released the Chrome update that has gone 42 Final, or Stable. O Google Chrome 42.0.2311.90 has been under development for quite some time and brings several improvements for applications, extensions and in the Web Platform APIs, not to mention the ones that are not visible at first glance.
The list of the complete list of changes has been posted to its official channel Google Chrome. The update includes 45 security fixes.
“We would also like to thank all the security researchers who worked with us during the development cycle to prevent security bugs before the release reached the stable channel. The total value of additional fees and recipients will be updated here when all reports have passed through the panels rewards” is also mentioned in today's release notes.
The errorthe ones that have been fixed in the new Google Chrome as well as the rewards that have been given to date are listed below:
[4000] [313939] Medium CVE-2015-1236: Cross-Origin-Bypass in Blink. Credit to Amitay Dobo.
[3000] [461191] High CVE-2015-1237: Use-after-free in IPC. Credit to Khalil Zhani.
[2000] [445808] High CVE-2015-1238: Out-of-bounds write in Skia. Credit to cloudfuzzer.
[1000] [463599] Medium CVE-2015-1240: Out-of-bounds read in WebGL. Credit to w3bd3vil.
[1000] [418402] Medium CVE-2015-1241: Tap-Jacking. Credit to Phillip Moon and Matt Weston of Sandfield Information Systems.
[500] [460917] High CVE-2015-1242: Type confusion in V8. Credit to fcole@onshape.com.
[500] [455215] Medium CVE-2015-1244: HSTS bypass in WebSockets. Credit to Mike Ruddy.
[500] [444957] Medium CVE-2015-1245: Use-after-free in PDF. Credit to Khalil Zhani.
[500] [437399] Medium CVE-2015-1246: Out-of-bounds read in Blink. Credit to Atte Kettunen of OUSPG.
[500] [429838] Medium CVE-2015-1247: Scheme issues in OpenSearch. Credit to Jann Horn.
[500] [380663] Medium CVE-2015-1248: SafeBrowsing Bypass. Credit to Vittorio Gambaletta (VittGam).
In accordance with changelog, a new “Manage Accounts” or “Manage accounts,” NPAPI plugins are used if no policies are set for a plugin, a volume control bug has been fixed, and more.
You can download the new browser from chrome: // chrome / in your application's address bar.