Google Chrome silently updated itself to version 0.2.149.29 (apparently since September 5), but this version doesn't contain any new features, it just fixes some critical security flaws such as:
- a buffer overflow vulnerability in handling long filenames that display in the Save As... dialog. Issue: http://code.google.com/p/chromium/issues/detail?id=1414
- a buffer overflow vulnerability in handling link targets displayed in the status area when the user hovers over a link. Issue: reported internally to Google
- an out-of-bounds memory read when parsing URLs ending with :%. This is a low risk that can be used to crash the entire browser, possibly causing loss of data in the current session. Issue: http://code.google.com/p/chromium/issues/detail?id=122
- changing the default Downloads directory if it is set to Desktop, and ensure that Desktop cannot be the default (to avoid "malicious cluttering of the desktop with unwanted downloads").
Very good of them to have fixed these issues, but I still would have appreciated a pop-up or something letting me know that the program itself was updated - even if it's for our own protection, I don't like having things automatically accessing the internet and downloading/installing files. So as mentioned above, you don't have to worry about downloading anything since Google Chrome automatically updated itself.
Disclaimer: Some of my posts contain affiliate links (e.g. RoboForm).
