Topic: Chrome Security Update: US-CERT (Browser) @ AskWoody

Chrome Security Update: US-CERT (Browser)

Posted on Kirsty Comment on the AskWoody Lounge
Home › Forums › AskWoody support › Questions: Browsers and desktop software › Updates for browsers, apps and add-ins › Chrome Security Update: US-CERT (Browser)

Tagged: Chrome Release, NTLMv2, SCF, smb, US-CERT

This topic contains 17 replies, has 1 voice, and was last updated by
Kirsty 2 months, 2 weeks ago.
- Author
  
  Posts
- June 6, 2017 at 3:13 pm #119575 Reply
  
  Kirsty
  Da Boss
  
  Google Releases Security Updates for Chrome
  https://www.us-cert.gov/ncas/current-activity/2017/06/06/Google-Releases-Security-Updates-Chrome
  
  Original release date: June 06, 2017
  
  Google has released Chrome version 59.0.3071.86 for Windows, Mac, and Linux. This version addresses multiple vulnerabilities that, if exploited, may allow an attacker to take control of an affected system.
  
  Users and administrators are encouraged to review the Chrome Releases (link is external) page and apply the necessary updates.
  
  Comments on Stable Channel Update for Desktop (same external link as above) indicate this version addresses NTLMv2 credential leaks via SMB with SCF files.
  
  1 user thanked author for this post.
  
  NetDef
- June 16, 2017 at 4:43 am #120901 Reply
  Kirsty
  Da Boss
  Google Releases Security Updates for Chrome
  https://www.us-cert.gov/ncas/current-activity/2017/06/15/Google-Releases-Security-Updates-Chrome
  
  Original release date: June 15, 2017
  
  Google has released Chrome version 59.0.3071.104 for Windows, Mac, and Linux. This version addresses several vulnerabilities, including one that an attacker could exploit to cause a denial-of-service condition.
  
  US-CERT encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary updates
  
  This reply was modified 1 year, 8 months ago by
  Kirsty.
  
  This reply was modified 1 year, 8 months ago by
  Kirsty.
  
  This reply was modified 1 year, 8 months ago by
  Kirsty.
  
  This reply was modified 1 year, 8 months ago by
  Kirsty.
- July 26, 2017 at 3:04 pm #126537 Reply
  
  Kirsty
  Da Boss
  
  Google Releases Security Updates for Chrome
  https://www.us-cert.gov/ncas/current-activity/2017/07/26/Google-Releases-Security-Updates-Chrome
  
  Original release date: July 26, 2017
  
  Google has released Chrome version 60.0.3112.78 for Windows, Mac, and Linux. This version addresses multiple vulnerabilities that, if exploited, may allow an attacker to take control of an affected system.
  
  Users and administrators are encouraged to review the Chrome Releases (link is external) page and apply the necessary updates.
- September 7, 2017 at 1:39 am #132575 Reply
  
  Kirsty
  Da Boss
  
  Google Releases Security Updates for Chrome
  https://www.us-cert.gov/ncas/current-activity/2017/09/06/Google-Releases-Security-Updates-Chrome
  
  Original release date: September 06, 2017
  
  Google has released Chrome version 61.0.3163.79 for Windows, Mac, and Linux. This version addresses multiple vulnerabilities that an attacker could exploit to take control of an affected system.
  
  Users and administrators are encouraged to review the Chrome Releases (link is external) page and apply the necessary updates.
- October 19, 2017 at 12:14 am #138841 Reply
  
  Kirsty
  Da Boss
  
  Google Releases Security Updates for Chrome
  https://www.us-cert.gov/ncas/current-activity/2017/10/18/Google-Releases-Security-Updates-Chrome
  
  Original release date: October 18, 2017
  
  Google has released Chrome version 62.0.3202.62 for Windows, Mac, and Linux to address multiple vulnerabilities. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system.
  
  US-CERT encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary updates.
  
  1 user thanked author for this post.
  
  EyesOnWindows
- October 26, 2017 at 10:49 pm #140941 Reply
  
  Kirsty
  Da Boss
  
  Google Releases Security Update for Chrome
  https://www.us-cert.gov/ncas/current-activity/2017/10/26/Google-Releases-Security-Update-Chrome
  
  Original release date: October 26, 2017
  
  Google has released Chrome version 62.0.3202.75 for Windows, Mac, and Linux. This version addresses a vulnerability that an attacker could exploit to cause a denial-of-service condition.
  
  US-CERT encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary update.
- November 6, 2017 at 9:48 pm #144228 Reply
  
  Kirsty
  Da Boss
  
  Google Releases Security Update for Chrome
  https://www.us-cert.gov/ncas/current-activity/2017/11/06/Google-Releases-Security-Update-Chrome
  
  Original release date: November 06, 2017
  
  Google has released Chrome version 62.0.3202.89 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.
  
  US-CERT encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary update.
- December 7, 2017 at 2:08 am #150390 Reply
  
  Kirsty
  Da Boss
  
  Google Releases Security Update for Chrome
  https://www.us-cert.gov/ncas/current-activity/2017/12/06/Google-Releases-Security-Update-Chrome
  
  Original release date: December 06, 2017
  
  Google has released Chrome version 63.0.3239.84 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.
  
  US-CERT encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary update.
- December 15, 2017 at 12:11 am #152082 Reply
  
  Kirsty
  Da Boss
  
  Google Releases Security Update for Chrome
  https://www.us-cert.gov/ncas/current-activity/2017/12/14/Google-Releases-Security-Update-Chrome
  
  Original release date: December 14, 2017
  
  Google has released Chrome version 63.0.3239.108 for Windows, Mac, and Linux. This version addresses a vulnerability that an attacker could exploit to take control of an affected system.
  
  US-CERT encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary update.
- January 25, 2018 at 1:06 am #161969 Reply
  
  Kirsty
  Da Boss
  
  Google Releases Security Update for Chrome
  https://www.us-cert.gov/ncas/current-activity/2018/01/24/Google-Releases-Security-Update-Chrome
  
  Original release date: January 24, 2018
  
  Google has released Chrome version 64.0.3282.119 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to cause a denial-of-service condition.
  
  NCCIC/US-CERT encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary update.
  
  Chrome 64.0.3282.119 contains a number of fixes and improvements…
  This release contains additional mitigations against speculative side-channel attack techniques.
- March 11, 2018 at 1:45 am #174611 Reply
  
  Kirsty
  Da Boss
  
  Google Releases Security Update for Chrome
  https://www.us-cert.gov/ncas/current-activity/2018/03/06/Google-Releases-Security-Update-Chrome
  
  Original release date: March 06, 2018
  
  Google has released Chrome version 65.0.3325.146 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to obtain access to sensitive information.
  
  NCCIC/US-CERT encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary update.
  
  Chrome 65.0.3325.146 contains a number of fixes and improvements –
  This update includes 45 security fixes.
- April 19, 2018 at 2:51 am #185680 Reply
  
  Kirsty
  Da Boss
  
  Google Releases Security Update for Chrome
  https://www.us-cert.gov/ncas/current-activity/2018/04/18/Google-Releases-Security-Update-Chrome
  
  Original release date: April 18, 2018
  
  Google has released Chrome version 66.0.3359.117 for Windows, Mac, and Linux. This version addresses vulnerabilities that a remote attacker could exploit to take control of an affected system.
  
  NCCIC encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary update.
  
  Security Fixes:
  Chrome 66 will not trust website certificates issued by Symantec’s legacy PKI before June 1st 2016, continuing the phased distrust outlined in our previous announcements.
  
  This update includes 62 security fixes.
  
  1 user thanked author for this post.
  
  jburk07
- May 29, 2018 at 10:03 pm #195087 Reply
  
  Kirsty
  Da Boss
  
  Google Releases Security Update for Chrome
  https://www.us-cert.gov/ncas/current-activity/2018/05/29/Google-Releases-Security-Update-Chrome
  
  Original release date: May 29, 2018
  
  Google has released Chrome version 67.0.3396.62 for Windows, Mac, and Linux. This version addresses vulnerabilities that a remote attacker could exploit to take control of an affected system.
  
  NCCIC encourages users and administrators to review the Chrome Releases page and apply the necessary update.
  
  1 user thanked author for this post.
  
  JohnS1606
- June 7, 2018 at 6:31 pm #196617 Reply
  
  Kirsty
  Da Boss
  
  Google Releases Security Update for Chrome
  https://www.us-cert.gov/ncas/current-activity/2018/06/07/Google-Releases-Security-Update-Chrome
  
  Original release date: June 07, 2018
  
  Google has released Chrome version 67.0.3396.79 for Windows, Mac, and Linux. This version addresses a vulnerability that an attacker could exploit to take control of an affected system.
  
  NCCIC encourages users and administrators to review the Chrome Releases page and apply the necessary update.
  
  3 users thanked author for this post.
  
  JohnS1606,
  OscarCP
- July 25, 2018 at 3:13 am #205666 Reply
  
  Kirsty
  Da Boss
  
  Google Releases Security Update for Chrome
  https://www.us-cert.gov/ncas/current-activity/2018/07/24/Google-Releases-Security-Update-Chrome
  
  Original release date: July 24, 2018
  
  Google has released Chrome version 68.0.3440.75 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.
  
  NCCIC encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary update.
  
  Also, see the Bank-Grade Security topic
  
  1 user thanked author for this post.
  
  Elly
  - August 15, 2018 at 6:35 pm #211001 Reply
    
    Kirsty
    Da Boss
    
    Chrome Bug Lets Attackers Steal Web Secrets via Audio or Video HTML Tags
    By Catalin Cimpanu | August 15, 2018
    
    Google has patched a vulnerability in the Chrome browser that allows an attacker to retrieve sensitive information from other sites via audio or video HTML tags.
    
    Ron Masas, a security researcher with Imperva, discovered and reported this issue —tracked as CVE-2018-6177— to Google. The browser maker fixed the security hole at the end of July with the release of Chrome v68.0.3440.75.
    
    The vulnerability can be exploited in older versions of Chrome in situations where an attacker can lure a victim on a malicious site, via malvertising (malicious code inside ads embedded on legitimate sites), or via vulnerabilities on legitimate sites where an attacker can inject and execute code —such as via stored cross-site scripting (XSS) flaws.
    
    Attack leverages audio and video HTML tags
    
    Read the full article here
    
    2 users thanked author for this post.
    
    Elly,
    JohnS1606
- November 10, 2018 at 1:04 am #231909 Reply
  
  Kirsty
  Da Boss
  
  Stable Channel Update for Desktop
  Friday, November 9, 2018
  
  The stable channel has been updated to 70.0.3538.102 for Windows, Mac, and Linux, which will roll out over the coming days/weeks.
  …
  This update includes 3 security fixes.
  
  2 users thanked author for this post.
  
  Elly,
  JohnS1606
- December 5, 2018 at 2:54 am #238314 Reply
  
  Kirsty
  Da Boss
  
  Stable Channel Update for Desktop
  Tuesday, December 4, 2018
  
  The Chrome team is delighted to announce the promotion of Chrome 71 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks. Chrome 71.0.3578.80 contains a number of fixes and improvements — a list of changes is available in the log. Watch out for upcoming Chrome and Chromium blog posts about new features and big efforts delivered in 71.
  …
  This update includes 43 security fixes.
- Author
  
  Posts
Please follow the -Lounge Rules- no personal attacks, no swearing, and politics/religion are relegated to the Rants forum.

Reply To: Chrome Security Update: US-CERT (Browser)
You can use BBCodes to format your content.
Your account can't use Advanced BBCodes, they will be stripped before saving.

Your information:

Website:

Cancel
Comments are closed.

Welcome to our unique respite from the madness.
It's easy to post questions about Windows 10, Win8.1, Win7, Surface, Office, or browse through our Forums. Post anonymously or register for greater privileges. Keep it civil, please: Decorous Lounge rules strictly enforced.

February 2019
M	T	W	T	F	S	S
« Jan
				1	2	3
4	5	6	7	8	9	10
11	12	13	14	15	16	17
18	19	20	21	22	23	24
25	26	27	28

MS-DEFCON 2:

Chrome Security Update: US-CERT (Browser)

1 user thanked author for this post.

1 user thanked author for this post.

1 user thanked author for this post.

1 user thanked author for this post.

3 users thanked author for this post.

1 user thanked author for this post.

2 users thanked author for this post.

2 users thanked author for this post.

Plus Membership

Search The Lounge

Recent Replies

Recent Topics

Search for Topics

Recent blog posts

Links

Forums

Topics