http://www.roboformchrome.com/ Unofficial forums for RoboForm and Google Chrome. en Thu, 09 Feb 2012 13:02:44 +0000 http://www.roboformchrome.com/topic/google-chrome-beta-0214929-the-first-patch#post-22 Tue, 09 Sep 2008 12:39:36 +0000 Claudiu 22@http://www.roboformchrome.com/ <p>Google Chrome silently updated itself to version 0.2.149.29 (apparently <a href="http://googlechromereleases.blogspot.com/2008/09/beta-release-0214929.html">since September 5</a>), but this version doesn't contain any new features, it just fixes some critical security flaws such as:</p> <ul> <li>a buffer overflow vulnerability in handling long filenames that display in the Save As... dialog. Issue: <a href="http://code.google.com/p/chromium/issues/detail?id=1414" rel="nofollow">http://code.google.com/p/chromium/issues/detail?id=1414</a></li> <li>a buffer overflow vulnerability in handling link targets displayed in the status area when the user hovers over a link. Issue: reported internally to Google</li> <li>an out-of-bounds memory read when parsing URLs ending with :%. This is a low risk that can be used to crash the entire browser, possibly causing loss of data in the current session. Issue: <a href="http://code.google.com/p/chromium/issues/detail?id=122" rel="nofollow">http://code.google.com/p/chromium/issues/detail?id=122</a></li> <li>changing the default Downloads directory if it is set to Desktop, and ensure that Desktop cannot be the default (to avoid "malicious cluttering of the desktop with unwanted downloads").</li> </ul> <p>Very good of them to have fixed these issues, but I still would have appreciated a pop-up or something letting me know that the program itself was updated - even if it's for our own protection, I don't like having things automatically accessing the internet and downloading/installing files. So as mentioned above, you don't have to worry about downloading anything since Google Chrome automatically updated itself. </p>