Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Patches » ChromeWin34.0.1847.116

Overview

Id ChromeWin34.0.1847.116
Name Google Chrome 34.0.1847.116 for Windows (Update) (All Languages) (See Notes)
Vendor Name google
Product Google Chrome
Content Type Critical Critical
Language(s) ENGLISH 
Operating System(s) Windows 
Released On 08 Apr 2014 12:00:00

ChromeWin34.0.1847.116

Google Chrome 34.0.1847.116 for Windows (Update) (All Languages) (See Notes)

Vendor Name

google

Product

Google Chrome

Released On

08 Apr 2014 12:00:00

Url

http://googlechromereleases.blogspot.com/2014/04/stable-channel-update.html

Description

This release contains a number of fixes and improvements, including:

  • UXSS in V8.
  • OOB access in V8.
  • Integer overflow in compositor.
  • Use-after-free in web workers.
  • Use-after-free in DOM.
  • Memory corruption in V8.
  • Use-after-free in rendering.
  • Url confusion with RTL characters.
  • Use-after-free in speech.
  • OOB read with window property.
  • Local cross-origin bypass.
  • Use-after-free in forms.
  • Various fixes from internal audits, fuzzing and other initiatives.
  • Multiple vulnerabilities in V8 fixed in version 3.24.35.22.
  • Notes:

  • Deployment installs Chrome at the system level, so all users on the machine have access to the same instance of Google Chrome.
  • Deployment while Google Chrome is running will not update the current browser session. Google Chrome must be restarted in order to complete the update.
  • Deployment will not change the current default browser setting.
  • Older versions of Chrome (lower than 27.x) are not fully supported and may not get completely removed upon update. It is strongly recommended to uninstall older versions before updating.
  • Related Resources

    Related Vulnerabilities

    CVE-2014-1716   CVE-2014-1717   CVE-2014-1718   CVE-2014-1719   CVE-2014-1720   CVE-2014-1721   CVE-2014-1722   CVE-2014-1723   CVE-2014-1724   CVE-2014-1725   CVE-2014-1726   CVE-2014-1727   CVE-2014-1728   CVE-2014-1729  

    Related Patches

    None

    Superseded Patches


    Last Updated: 27 May 2016 11:18:39