![]() |
MS-DEFCON 2:
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it.
|
-
Chrome Security Update: US-CERT (Browser)
Home › Forums › AskWoody support › Questions: Browsers and desktop software › Updates for browsers, apps and add-ins › Chrome Security Update: US-CERT (Browser)
Tagged: Chrome Release, NTLMv2, SCF, smb, US-CERT
This topic contains 17 replies, has 1 voice, and was last updated by
Kirsty 2 months, 2 weeks ago.-
AuthorPosts
-
Google Releases Security Updates for Chrome
https://www.us-cert.gov/ncas/current-activity/2017/06/06/Google-Releases-Security-Updates-ChromeOriginal release date: June 06, 2017
Google has released Chrome version 59.0.3071.86 for Windows, Mac, and Linux. This version addresses multiple vulnerabilities that, if exploited, may allow an attacker to take control of an affected system.Users and administrators are encouraged to review the Chrome Releases (link is external) page and apply the necessary updates.
Comments on Stable Channel Update for Desktop (same external link as above) indicate this version addresses NTLMv2 credential leaks via SMB with SCF files.1 user thanked author for this post.
-
Google Releases Security Updates for Chrome
https://www.us-cert.gov/ncas/current-activity/2017/06/15/Google-Releases-Security-Updates-ChromeOriginal release date: June 15, 2017
Google has released Chrome version 59.0.3071.104 for Windows, Mac, and Linux. This version addresses several vulnerabilities, including one that an attacker could exploit to cause a denial-of-service condition.US-CERT encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary updates
-
Google Releases Security Updates for Chrome
https://www.us-cert.gov/ncas/current-activity/2017/07/26/Google-Releases-Security-Updates-ChromeOriginal release date: July 26, 2017
Google has released Chrome version 60.0.3112.78 for Windows, Mac, and Linux. This version addresses multiple vulnerabilities that, if exploited, may allow an attacker to take control of an affected system.Users and administrators are encouraged to review the Chrome Releases (link is external) page and apply the necessary updates.
-
Google Releases Security Updates for Chrome
https://www.us-cert.gov/ncas/current-activity/2017/09/06/Google-Releases-Security-Updates-ChromeOriginal release date: September 06, 2017
Google has released Chrome version 61.0.3163.79 for Windows, Mac, and Linux. This version addresses multiple vulnerabilities that an attacker could exploit to take control of an affected system.Users and administrators are encouraged to review the Chrome Releases (link is external) page and apply the necessary updates.
-
Google Releases Security Updates for Chrome
https://www.us-cert.gov/ncas/current-activity/2017/10/18/Google-Releases-Security-Updates-ChromeOriginal release date: October 18, 2017
Google has released Chrome version 62.0.3202.62 for Windows, Mac, and Linux to address multiple vulnerabilities. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system.US-CERT encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary updates.
1 user thanked author for this post.
-
Google Releases Security Update for Chrome
https://www.us-cert.gov/ncas/current-activity/2017/10/26/Google-Releases-Security-Update-ChromeOriginal release date: October 26, 2017
Google has released Chrome version 62.0.3202.75 for Windows, Mac, and Linux. This version addresses a vulnerability that an attacker could exploit to cause a denial-of-service condition.US-CERT encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary update.
-
Google Releases Security Update for Chrome
https://www.us-cert.gov/ncas/current-activity/2017/11/06/Google-Releases-Security-Update-ChromeOriginal release date: November 06, 2017
Google has released Chrome version 62.0.3202.89 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.US-CERT encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary update.
-
Google Releases Security Update for Chrome
https://www.us-cert.gov/ncas/current-activity/2017/12/06/Google-Releases-Security-Update-ChromeOriginal release date: December 06, 2017
Google has released Chrome version 63.0.3239.84 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.US-CERT encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary update.
-
Google Releases Security Update for Chrome
https://www.us-cert.gov/ncas/current-activity/2017/12/14/Google-Releases-Security-Update-ChromeOriginal release date: December 14, 2017
Google has released Chrome version 63.0.3239.108 for Windows, Mac, and Linux. This version addresses a vulnerability that an attacker could exploit to take control of an affected system.US-CERT encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary update.
-
Google Releases Security Update for Chrome
https://www.us-cert.gov/ncas/current-activity/2018/01/24/Google-Releases-Security-Update-ChromeOriginal release date: January 24, 2018
Google has released Chrome version 64.0.3282.119 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to cause a denial-of-service condition.NCCIC/US-CERT encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary update.
Chrome 64.0.3282.119 contains a number of fixes and improvements…
This release contains additional mitigations against speculative side-channel attack techniques. -
Google Releases Security Update for Chrome
https://www.us-cert.gov/ncas/current-activity/2018/03/06/Google-Releases-Security-Update-ChromeOriginal release date: March 06, 2018
Google has released Chrome version 65.0.3325.146 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to obtain access to sensitive information.NCCIC/US-CERT encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary update.
Chrome 65.0.3325.146 contains a number of fixes and improvements –
This update includes 45 security fixes. -
Google Releases Security Update for Chrome
https://www.us-cert.gov/ncas/current-activity/2018/04/18/Google-Releases-Security-Update-ChromeOriginal release date: April 18, 2018
Google has released Chrome version 66.0.3359.117 for Windows, Mac, and Linux. This version addresses vulnerabilities that a remote attacker could exploit to take control of an affected system.NCCIC encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary update.
Security Fixes:
Chrome 66 will not trust website certificates issued by Symantec’s legacy PKI before June 1st 2016, continuing the phased distrust outlined in our previous announcements.This update includes 62 security fixes.
1 user thanked author for this post.
-
Google Releases Security Update for Chrome
https://www.us-cert.gov/ncas/current-activity/2018/05/29/Google-Releases-Security-Update-ChromeOriginal release date: May 29, 2018
Google has released Chrome version 67.0.3396.62 for Windows, Mac, and Linux. This version addresses vulnerabilities that a remote attacker could exploit to take control of an affected system.NCCIC encourages users and administrators to review the Chrome Releases page and apply the necessary update.
1 user thanked author for this post.
-
Google Releases Security Update for Chrome
https://www.us-cert.gov/ncas/current-activity/2018/06/07/Google-Releases-Security-Update-ChromeOriginal release date: June 07, 2018
Google has released Chrome version 67.0.3396.79 for Windows, Mac, and Linux. This version addresses a vulnerability that an attacker could exploit to take control of an affected system.NCCIC encourages users and administrators to review the Chrome Releases page and apply the necessary update.
-
Google Releases Security Update for Chrome
https://www.us-cert.gov/ncas/current-activity/2018/07/24/Google-Releases-Security-Update-ChromeOriginal release date: July 24, 2018
Google has released Chrome version 68.0.3440.75 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.NCCIC encourages users and administrators to review the Chrome Releases (link is external) page and apply the necessary update.
Also, see the Bank-Grade Security topic1 user thanked author for this post.
-
Chrome Bug Lets Attackers Steal Web Secrets via Audio or Video HTML Tags
By Catalin Cimpanu | August 15, 2018
Google has patched a vulnerability in the Chrome browser that allows an attacker to retrieve sensitive information from other sites via audio or video HTML tags.Ron Masas, a security researcher with Imperva, discovered and reported this issue —tracked as CVE-2018-6177— to Google. The browser maker fixed the security hole at the end of July with the release of Chrome v68.0.3440.75.
The vulnerability can be exploited in older versions of Chrome in situations where an attacker can lure a victim on a malicious site, via malvertising (malicious code inside ads embedded on legitimate sites), or via vulnerabilities on legitimate sites where an attacker can inject and execute code —such as via stored cross-site scripting (XSS) flaws.
Attack leverages audio and video HTML tags
Read the full article here
-
-
Stable Channel Update for Desktop
Friday, November 9, 2018The stable channel has been updated to 70.0.3538.102 for Windows, Mac, and Linux, which will roll out over the coming days/weeks.
…
This update includes 3 security fixes. -
Stable Channel Update for Desktop
Tuesday, December 4, 2018
The Chrome team is delighted to announce the promotion of Chrome 71 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks. Chrome 71.0.3578.80 contains a number of fixes and improvements — a list of changes is available in the log. Watch out for upcoming Chrome and Chromium blog posts about new features and big efforts delivered in 71.
…
This update includes 43 security fixes. -
AuthorPosts
Comments are closed.
-
-
It's easy to post questions about Windows 10, Win8.1, Win7, Surface, Office, or browse through our Forums. Post anonymously or register for greater privileges. Keep it civil, please: Decorous Lounge rules strictly enforced.

Plus Membership
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments. Click here for details and to sign up.
Search The Lounge
Recent Replies
-
Ascaris on Woody’s Windows Watch: Dispatches from the browser-war’s front lines43 minutes ago
-
Peter Haug on Woody’s Windows Watch: Dispatches from the browser-war’s front lines1 hour, 5 minutes ago
-
PerthMike on Server 2016 LTSC patches take for-e-ver. There are numerous reasons why – and not much you can do about it1 hour, 37 minutes ago
-
Bluetrix on Anomalous, buggy behavior on AskWoody1 hour, 57 minutes ago
-
PKCano on Win10.1809 repair / in-place upgrade failure1 hour, 58 minutes ago
-
Ascaris on LangList: Should you trust a hard drive after a major error?2 hours, 49 minutes ago
-
OscarCP on Woody’s Windows Watch: Dispatches from the browser-war’s front lines3 hours, 10 minutes ago
-
OscarCP on Tell me the truth – Which is better, Chrome or Firefox?3 hours, 20 minutes ago
-
OscarCP on Cimpanu: The US Govt Accountability Office recommends the US adopt GDPR-like privacy legislation3 hours, 38 minutes ago
-
OscarCP on How many Internet domains own MS, Google, Apple, Amazon? Try tens of millions3 hours, 50 minutes ago
-
deuce120 on LangList: Should you trust a hard drive after a major error?3 hours, 56 minutes ago
-
Woody Lounger on This is a test topic from a Lounger3 hours, 58 minutes ago
-
woody on Anomalous, buggy behavior on AskWoody4 hours, 7 minutes ago
-
mn– on LangList: Should you trust a hard drive after a major error?4 hours, 8 minutes ago
-
deuce120 on Woody’s Windows Watch: Dispatches from the browser-war’s front lines4 hours, 9 minutes ago
-
Sueska on Woody’s Windows Watch: Dispatches from the browser-war’s front lines4 hours, 10 minutes ago
-
woody on Anomalous, buggy behavior on AskWoody4 hours, 23 minutes ago
-
Mele20 on Cimpanu: The US Govt Accountability Office recommends the US adopt GDPR-like privacy legislation4 hours, 23 minutes ago
-
anonymous on LangList: Should you trust a hard drive after a major error?
4 hours, 24 minutes ago -
anonymous on LangList: Should you trust a hard drive after a major error?
4 hours, 39 minutes ago
Recent Topics
-
Edge is NOT just Win 10
5 minutes ago
-
Verizon FIOS upload speed
10 minutes ago
-
Win10.1809 repair / in-place upgrade failure
1 hour, 58 minutes ago
-
Unable to run a command in Linux Mint
2 hours, 27 minutes ago
-
Extra system files?
6 hours, 2 minutes ago
-
Server 2016 LTSC patches take for-e-ver. There are numerous reasons why – and not much you can do about it
1 hour, 37 minutes ago
-
Whatever happened to Opera?
5 hours, 41 minutes ago
-
win 10 backup failure 0x800700E1
5 hours, 31 minutes ago
-
Win 7 to Win 10: 1803 or 1809 or 1903?
7 hours, 43 minutes ago
-
Windows 8.1 Post Patch Maintenance
12 hours, 43 minutes ago
Search for Topics
Recent blog posts
- Server 2016 LTSC patches take for-e-ver. There are numerous reasons why – and not much you can do about it
- Woody’s Windows Watch: Dispatches from the browser-war’s front lines
- LangList: Should you trust a hard drive after a major error?
- Patch Watch: February Patch Tuesday and yet more problems with the new Japanese calendar
- Deanna’s Freeware Spotlight: MultiPack Visual C+ Installer