The stable channel of the Chrome web browser has been updated to 23.0.1271.97 for all major platforms. As far as the security fixes are concerned, Google has addressed a total of 6 vulnerabilities.The most important of them, catalogued as being critical, has been identified by Michal Zalewski of the Google Security Team. The issue led to a crash in history navigation.
Chamal de Silva has discovered a couple of use-after-free issues with visibility events and the URL loader. For finding these high-severity flaws he has been rewarded with a total of $2,500 (1,950 EUR).
The third high-severity security hole – a stack corruption in AAC decoding – has been identified by pawlkt. The researcher has received $2,000 (1,600 EUR) for his work.
Finally, Google has addressed a couple of medium-severity issues discovered by Jüri Aedla and Cris Neckar, both working on the company’s security team.
Google Chrome for Windows is available for download here
Google Chrome for Mac is available for download here
Google Chrome for Linux is available for download here