Google and Mozilla have released new versions of their browsers, plugging plenty of security holes along the way. Hundreds of bugs have been fixed in the Google Chrome update, after the company said it would be releasing a “new stable version” of the browser every six weeks.
Tuesday Google released a “stable channel” version of its Chrome 7 web browser, with fixes for a number of vulnerabilities. Version 7.0.517.41 for Windows, Mac and Linux includes fixes for at least 11 flaws, which could allow an attacker to execute arbitrary code, cause a denial-of-service, conduct URL spoofing or bypass security restrictions, according to an advisory from the US-CERT.
The one critical flaw listed in the bunch could cause a browser crash due to an issue involving the form auto-fill capability. Of the remaining flaws, five were rated “high,” three were listed “medium” and one “low.” The five critical could be exploited “to run attacker code and install software, requiring no user interaction beyond normal browsing,” Mozilla explained.
“Also, if you choose to block sites from setting any data in your browser’s content settings for cookies, you can now use a new dialog for managing blocked cookies in bulk,” noted Jeff Chang, product manager for Google Chrome, in a blog.
“As always, we recommend that users keep up to date with the latest stability and support versions of Firefox, and encourage all our users to upgrade to the very latest version, Firefox 3.6.11,” advised Firefox release manager Christian Legnitto.