Google breaks three-day silence on security fix

By siliconindia | Tuesday, 09 September 2008, 19:30 IST | 1 Comments

Bangalore: Followed by the launch of Google Chrome, security issues were raised against Google and the search giant was silent about this issue. However, today the search giant broke the silence after fixing the vulnerability. "The critical patches relate to buffer overrun vulnerabilities that could have let a remote attacker execute arbitrary software on a Chrome user's computer," said Mark Larson, a Google Chrome program manager, in a mailing list posting Monday afternoon. The first patch fixed a vulnerability in handling long file names, called the SaveAs vulnerability, and the second a vulnerability in dealing with the Web site addresses displayed in Chrome's status area when the user hovers over a link. Other security issues which Google fixed are 'about:%' in the address bar could crash the computer and the second was to prevent the user's desktop from being the default download directory to mitigate the risk of malicious cluttering of the desktop with unwanted downloads, which can lead to executing unwanted files.

Siliconindia

Google breaks three-day silence on security fix

Featured Vendors

Singh Biotechnology: Unlocking the “Undruggable”

Fixpliance AI: Fixing Compliance at the Speed of AI

Harness: Unified AI Platform for Faster, Safer Delivery

Straiker: Unlocking AI’s Future

Mem0: The Missing Link in AI at Scale

Votal AI: Redefining Workforce Efficiency Through Ethical AI