Google Releases Chrome 13, Addresses 30 Vulnerabilities

G

Recently, Google released Chrome 13. The latest version 13.0.782.107 uses prerendering technology to deliver instant search results. The update to the stable channel is applicable for Windows, Chrome, Linux and Mac platforms. The latest version of Chrome also includes the much-awaited Print Preview feature. The Preview appears, when users select Print option. Google has also added Print to PDF functionality in Chrome 13. However, the feature is available for Windows and Linux users. Google plans to introduce the feature for Mac users in the near future. The new version also comes with improved omnibox, which merges address bar and search feature. The refined omnibox also attempts to produce results from the browser history. Google’s security team has also mitigated several vulnerabilities and doled out $17,000 in rewards to researchers for reporting security issues in Chrome. The developer has rated 14 of the patched vulnerabilities as high risk, 9 as medium risk and 7 as low risk vulnerabilities. The security flaws allow an attacker to execute arbitrary code or initiate cross-site scripting attacks.

The high risk vulnerabilities include use-after-free issues in pepper plug-in installation, floating styles, float removal, media selectors, HTML range handling, frame loading and display box rendering. Google rates those vulnerabilities as high, which allow attackers to read or alter sensitive data on websites, execute arbitrary code in sandbox and interfere with browser security. The developer also rates vulnerabilities encountered during the implementation of sandbox as high risk.

Google follows a faster cycle of updates. The developer encourages researchers to report security flaws under the vulnerability reward program. The program helps Google to mitigate the security flaws before their exploitation by attackers. The prevailing vibrant threat environment creates challenge for developers to constantly improve the security of software products. Software professionals may benefit from online university degree and security certification programs to improve their programming skills. They must keep themselves acquainted of latest threats.

Internet users must update to the latest version of Chrome to improve their browsing experience and safeguard their computers from malicious attacks. Tracking security updates may help them in acquainting themselves of various types of security threats. E-tutorials and online degree programs may also help in improving the security practices of Internet users.

Organizations face the challenge of keeping pace with the latest product releases and upgrades. Professionals qualified in IT and computer science degree programs may help businesses to prioritize and plan the implementation of product upgrades.

Contact Press

EC-Council
Website: http://www.eccuni.us
Email: [email protected]
Tel: 505-341-3228

EC-Council University is based in Albuquerque, New Mexico and offers Master of Security Science (MSS) degree to students from various backgrounds such as graduates, IT Professionals, and military students amongst several others. The MSS is offered as a 100% online degree program and allows EC-Council University to reach students from not only the United States, but from all around the world.

EC-Council is a member-based organization that certifies individuals in cybersecurity and e-commerce skills. It is the owner and developer of 16 security certifications, including Certified Ethical Hacker (CEH), Computer Hacking Forensics Investigator (CHFI) and EC-Council Certified Security Analyst (ECSA)/License Penetration Tester (LPT). Its certificate programs are offered in over 60 countries around the world.

EC-Council has trained over 80,000 individuals and certified more than 30,000 members, through more than 450 training partners globally. These certifications are recognized worldwide and have received endorsements from various government agencies including the U.S. federal government via the Montgomery GI Bill, Department of Defense via DoD 8570.01-M, National Security Agency (NSA) and the Committee on National Security Systems (CNSS). EC-Council also operates the global series of Hacker Halted security conferences

About the author

By eccuni