The web browser is arguably the most important piece of software on your computer. You spend much of your time online inside a browser: when you search, chat, email, shop, bank, read the news, and watch videos online, you often do all this using a browser.
Google Chrome is a browser that combines a minimal design with sophisticated technology to make the web faster, safer, and easier. Use one box for everything--type in the address bar and get suggestions for both search and Web pages. Thumbnails of your top sites let you access your favorite pages instantly with lightning speed from any new tab. Desktop shortcuts allow you to launch your favorite Web apps straight from your desktop. Google Chrome also uses a brand new JavaScript engine (V8), which is much faster than existing javascript interpreters. This means you can create more complex and more intensive AJAX applications with fewer speed and processing constraints. Finally, Google Chrome is built on top of WebKit, so Google Chrome users will benefit from the CSS3 features being added to WebKit as those features are released.
Chrome has many useful features built in, including automatic full-page translation and access to thousands of apps, extensions, and themes from the Chrome Web Store.
Google Chrome is one of the best solutions for Internet browsing giving you high level of security, speed and great features.
Chrome 44.0.2403.89 contains a number of fixes and improvements, including:
- A number of new apps/extension APIs
- Lots of under the hood changes for stability and performance
A list of changes is available in the log.
This update includes 43 security fixes. Please see the Chromium security page for more information.
- [$3000][446032] High CVE-2015-1271: Heap-buffer-overflow in pdfium. Credit to cloudfuzzer.
- [$3000][459215] High CVE-2015-1273: Heap-buffer-overflow in pdfium. Credit to makosoft.
- [$TBD][461858] High CVE-2015-1274: Settings allowed executable files to run immediately after download. Credit to andrewm.bpi.
- [$7500][462843] High CVE-2015-1275: UXSS in Chrome for Android. Credit to WangTao(neobyte) of Baidu X-Team.
- [$TBD][472614] High CVE-2015-1276: Use-after-free in IndexedDB. Credit to Collin Payne.
- [$5500][483981] High CVE-2015-1279: Heap-buffer-overflow in pdfium. Credit to mlafon.
- [$5000][486947] High CVE-2015-1280: Memory corruption in skia. Credit to cloudfuzzer.
- [$1000][487155] High CVE-2015-1281: CSP bypass. Credit to Masato Kinugawa.
- [$TBD][487928] High CVE-2015-1282: Use-after-free in pdfium. Credit to Chamal de Silva.
- [$TBD][492052] High CVE-2015-1283: Heap-buffer-overflow in expat. Credit to sidhpurwala.huzaifa.
- [$2000][493243] High CVE-2015-1284: Use-after-free in blink. Credit to Atte Kettunen of OUSPG.
- [$7500][504011] High CVE-2015-1286: UXSS in blink. Credit to anonymous.
- [$1337][419383] Medium CVE-2015-1287: SOP bypass with CSS. Credit to filedescriptor.
- [$1000][444573] Medium CVE-2015-1270: Uninitialized memory read in ICU. Credit to Atte Kettunen of OUSPG.
- [$500][451456] Medium CVE-2015-1272: Use-after-free related to unexpected GPU process termination. Credit to Chamal de Silva.
- [479743] Medium CVE-2015-1277: Use-after-free in accessibility. Credit to SkyLined.
- [$500][482380] Medium CVE-2015-1278: URL spoofing using pdf files. Credit to Chamal de Silva.
- [$1337][498982] Medium CVE-2015-1285: Information leak in XSS auditor. Credit to gazheyes.
- [$500][479162] Low CVE-2015-1288: Spell checking dictionaries fetched over HTTP. Credit to mike@michaelruddy.com.
As usual, the ongoing internal security work was responsible for a wide range of fixes:
- [512110] CVE-2015-1289: Various fixes from internal audits, fuzzing and other initiatives.
Download: Google Chrome 44.0.2403.89 | 800 KB (Freeware)
Download: Google Chrome 32-bit Offline Installer | 41.0 MB
Download: Google Chrome 64-bit Offline Installer| 46.6 MB
Download: Google Chrome MSI Installers for Windows
View: Chrome Website | Chrome for Mac | Release Notes
7 Comments - Add comment