Google just released the new stable version of Chrome 54, which added support in several features. One of the best things about the new version is the Custom Elements V1 specification that allows developers to create custom HTML tags.
Chrome has been supporting Custom Elements V1 for some time now but with an intermediate and incomplete version of Custom Elements V1.
But Chrome 54 now supports Custom Elements V1, with a final version of this WHATWG feature, which all major browser vendors have agreed to support and implement.
Currently, only Chrome 54 and Opera 41 Beta support this new feature, while most browsers still support V0.
Another important feature that Chrome 54 brings is the BroadcastChannel, a mechanism through which Internet workers and service workers can talk to each other through multiple browser tabs and iframes.
This feature will allow developers to create online services that can synchronize their data from multiple windows and tabs to the same source URL much easier and without the need for complex asynchronous JavaScript code. Perhaps the code is complicated but not as complicated as before.
Google developers also added new features to the Android version of the browser.
So Chrome 54 comes with a function called Element.requestFullScreen(), Developers can use it to automatically change the content video in full screen mode when phone orientation changes.
In addition, the 54 version comes with improved Page Visibility API, which allows videos to play as the user scrolls down the page. This behavior already exists in most desktop browsers but never existed in the Chrome version for Android.
Παρακάτω είναι όλα τα security fixes που φέρνει ο νέος Chrome 54.
[$ 7500] [645211] High CVE-2016-5181: Universal XSS in Blink. Credit to Anonymous [$ 5500] [638615] High CVE-2016-5182: Heap overflow in Blink. Credit to Giwan Go of STEALIEN [$ 3000] [645122] High CVE-2016-5183: Use after free in PDFium. Credit to Anonymous [$ 3000] [630654] High CVE-2016-5184: Use after free in PDFium. Credit to Anonymous [$ 3000] [621360] High CVE-2016-5185: Use after free in Blink. Credit to cloudfuzzer [$ 1000] [639702] High CVE-2016-5187: URL spoofing. Credit to Luan Herrera [$ 3133.7] [565760] Medium CVE-2016-5188: UI spoofing. Credit to Luan Herrera [$ 1000] [633885] Medium CVE-2016-5192: Cross-Origin bypass in Blink. Credit to haojunhou@gmail.com [$ 500] [646278] Medium CVE-2016-5189: URL spoofing. Credit to xisigr of Tencent's Xuanwu Lab [$ 500] [644963] Medium CVE-2016-5186: Out of bounds read in DevTools. Credit to Abdulrahman Alqabandi (@qab) [$ 500] [639126] Medium CVE-2016-5191: Universal XSS in Bookmarks. Credit to Gareth Hughes [$ N / A] [642067] Medium CVE-2016-5190: Use after free in Internals. Credit to Atte Kettunen of OUSPG [$ 500] [639658] low CVE-2016-5193: Scheme Bypass. Credit to Yuyang ZHOU (martinzhou96)- [654782] CVE-2016-5194: Various fixes from internal audits, fuzzy and other initiatives
Download the new browser
https://www.google.com/chrome/
