Chrome 24.0.1312.56 Addresses 3 High-Severity Vulnerabilities

Most of the security holes have been identified by Google's own experts

By on January 23rd, 2013 08:11 GMT

Google has released Chrome 24.0.1312.56. Besides fixing some bugs, the update also addresses a number of vulnerabilities that could have been leveraged by cybercriminals against Chrome users.

The high-severity security issues addressed in the latest release are a use-after-free in canvas font handling, an unchecked array index in content blocking, and a crash with unsupported RTC sampling rate.

In addition to these flaws, a couple of medium-severity vulnerabilities have also been addressed, including a missing URL validation when opening new windows.

On this occasion, since most of the vulnerabilities have been identified by members of the Google Chrome Security Team and the Chromium development community, only Atte Kettunen of OUSPG has been rewarded with $1,000 for identifying the use-after-free issue in canvas font handling.

Google Chrome for Windows is available for download here
Google Chrome for Mac is available for download here
Google Chrome for Linux is available for download here