December 4, 2016

Google Releases Chrome 10.0.648.134 and then 10.0.648.151

Google has made two quick releases to its Chrome web browser. The first on Tuesday includes a newer version of Adobe Flash and the second on Thursday blacklists a small number of HTTPS certificates.

A few days ago, Adobe revealed the details of a new zero-day vulnerability in Flash. This vulnerability, which is being exploited via a Flash (.swf) file embedded in a Microsoft Excel (.xls) file and delivered as an email attachment, can cause a crash and/or potentially allow an attacker to take control of the affected system.

The vulnerability is also present in the Authplay.dll component that ships with Adobe Reader and Acrobat X (10.0.1) and earlier 10.x and 9.x versions of Reader and Acrobat for Windows and Macintosh operating systems.

Adobe have a fix for this problem which it plans to release at the beginning of next week. However Google has pipped Adobe to the post and released the fix in Chrome ahead of the official Adobe release.

Share and Enjoy:
  • Print
  • Digg
  • StumbleUpon
  • del.icio.us
  • Facebook
  • Yahoo! Buzz
  • Twitter
  • Google Bookmarks