Jump to content

Recommended Posts

Posted (edited)

 

A graphic showing Google Chrome's logo
 

Chrome 124 makes it easier to install any website on desktop

You could install any website as a web app-style window for a long time on Chrome for desktop now, but the process wasn’t very intuitive. Rather than using a dedicated installation option, you had to use the Create Shortcut option in Save and Share in the overflow menu, and then tick the Open as window.

 
A dialog for creating a website shortcut with Google Chrome is shown

You may not have to remember to tick the checkbox in future Chrome versions

With Chrome 124, you can make the decision to turn a website into a windowed app right inside the Save and Share menu, saving you from the rather complicated route with the checkbox. To enable this, you currently need to turn on the chrome://flags/#web-app-universal-install and chrome://flags/#shortcuts-not-apps flags.

 

Chrome 124 works on a bottom bar for the Google app

Chrome experimented with a bottom bar interface a long time ago on Android, and its iOS version recently received an optional fully bottom-based interface. While there isn’t any evidence that Google is working on something like that for Chrome for Android, the company might do the second best thing and add a bottom bar to Chrome custom tabs opened via the Google app.

 

That’s basically all we know about it at this point, with Chrome 124 only showing early evidence that this is coming. The bottom bar might house Google-specific options or ways to dive deeper into search, but that’s just speculation.

 

Chrome 124 preps a Circle-to-Search-style feature for desktops

Google is working on a serious Lens upgrade for Chrome on desktop, and we might just see a new Android feature make its way to the browser. It basically works by turning your current tab into a screenshot that you can use Lens on.

 

Right now, that’s about everything we can glean so far, but given that Google recently introduced Circle to Search on select Samsung and Google phones, we can imagine that you’ll be able to select different portions of the visible website and use it to dive into a search session.

 
 

Chrome 124 lays groundwork for a new keyboard shortcut

Chrome 124 is adding preliminary work for a new keyboard shortcut. Rather than remembering your operating system’s sometimes convoluted way to exit a fullscreen window, you’ll simply be able to press and hold Esc to achieve the same. This isn’t currently live, though.

 

Chrome 124 stores local passwords in Play services on Android

You can use Chrome as your local password manager on Android when you don’t sync your passwords with your Google account. Thanks to the most recent changes to the way Google works with passwords, it will change where your credentials are stored on Android, though.

With Chrome 124, local passwords are now stored in the Google Play Services, much like they already were with the cloud-based version of the password manager. This means that the interface looks slightly different, but the new version should be more reliable for autofilling in other apps. This policy was already in place with Chrome 123 for new users, but the migration is now happening for everyone with Chrome 124.

 
Edited by 大†Shinegumi†大
Posted

The Stable channel has been updated to 110.0.5481.104 for Windows only, which will roll out over the coming days/weeks. A full list of changes in this build is available in the log.

 

The Extended Stable channel has been updated to 110.0.5481.104 for Windows only which will roll out over the coming days/weeks.

Posted

111.0.5563.110/.111 for Windowswhich will roll out over the coming days/weeks. A full list of changes in this build is available in the log.

Security Fixes and Rewards

Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.

 

This update includes 8 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information.

 

[$10000][1421773] High CVE-2023-1528: Use after free in Passwords. Reported by Wan Choi of Seoul National University on 2023-03-07

[$8000][1419718] High CVE-2023-1529: Out of bounds memory access in WebHID. Reported by anonymous on 2023-02-27

[$7000][1419831] High CVE-2023-1530: Use after free in PDF. Reported by The UK's National Cyber Security Centre (NCSC) on 2023-02-27

[$TBD][1415330] High CVE-2023-1531: Use after free in ANGLE. Reported by Piotr Bania of Cisco Talos on 2023-02-13

[$NA][1421268] High CVE-2023-1532: Out of bounds read in GPU Video. Reported by Mark Brand of Google Project Zero on 2023-03-03

[$TBD][1422183] High CVE-2023-1533: Use after free in WebProtect. Reported by Weipeng Jiang (@Krace) of VRI on 2023-03-07

[$NA][1422594] High CVE-2023-1534: Out of bounds read in ANGLE. Reported by Jann Horn and Mark Brand of Google Project Zero on 2023-03-08

 

We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.

Posted

The Stable and extended stable channel has been updated to 112.0.5615.121 for Windows Mac and Linux  which will roll out over the coming days/weeks. A full list of changes in this build is available in the log.

 


M112 Stable Update for Desktop - v112.0.5615.121

Security Fixes and Rewards

Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.


This update includes 2 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information.


[$NA][1432210] High CVE-2023-2033: Type Confusion in V8. Reported by Clément Lecigne of Google's Threat Analysis Group on 2023-04-11


We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.


Google is aware that an exploit for CVE-2023-2033 exists in the wild.


As usual, our ongoing internal security work was responsible for a wide range of fixes:

[1433131] Various fixes from internal audits, fuzzing and other initiatives

Posted

The Stable channel is being updated to 112.0.5615.134 (Platform version: 15359.58.0) for most ChromeOS devices and will be rolled out over the next few days.

For Chrome browser fixes, see the Chrome Desktop release announcement.

If you find new issues, please let us know one of the following ways:

Interested in switching channels? Find out how.

 

Google ChromeOS
Posted

The Stable and extended stable channel has been updated to 113.0.5672.92/.93 Windows and 113.0.5672.92 for Mac and Linux which will roll out over the coming days/weeks. A full list of changes in this build is available in the log.

Interested in switching release channels?  Find out how here. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.

Posted

The Stable channel has been updated to 113.0.5672.126 for Mac and Linux and 113.0.5672.126/.127 for Windowswhich will roll out over the coming days/weeks.A full list of changes in this build is available in the log.

 

 Security Fixes and Rewards

Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.

 

This update includes 12 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information.

 

[$TBD][1444360] Critical CVE-2023-2721: Use after free in Navigation. Reported by Guang Gong of Alpha Lab, Qihoo 360 on 2023-05-10

[$7000][1400905] High CVE-2023-2722: Use after free in Autofill UI. Reported by Rong Jian of VRI on 2022-12-14

[$3000][1435166] High CVE-2023-2723: Use after free in DevTools. Reported by asnine on 2023-04-21

[$NA][1433211] High CVE-2023-2724: Type Confusion in V8. Reported by Sergei Glazunov of Google Project Zero on 2023-04-14

[$TBD][1442516] High CVE-2023-2725: Use after free in Guest View. Reported by asnine on 2023-05-04

[$1500][1442018] Medium CVE-2023-2726: Inappropriate implementation in WebApp Installs. Reported by Ahmed ElMasry on 2023-05-03

Posted

The Stable and extended stable channels has been updated to 114.0.5735.133 for Mac and Linux and 114.0.5735.133/134 for Windowswhich will roll out over the coming days/weeks. A full list of changes in this build is available in the log.



Security Fixes and Rewards
 

Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.

 

This update includes 5 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information.

 

[$TBD][1450568] Critical CVE-2023-3214: Use after free in Autofill payments.Reported by Rong Jian of VRI on 2023-06-01

[$3000][1446274] High CVE-2023-3215: Use after free in WebRTC. Reported by asnine on 2023-05-17

[$TBD][1450114] High CVE-2023-3216: Type Confusion in V8. Reported by 5n1p3r0010 on 2023-05-31

[$NA][1450601] High CVE-2023-3217: Use after free in WebXR. Reported by Sergei Glazunov of Google Project Zero on 2023-06-01

 

We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.

As usual, our ongoing internal security work was responsible for a wide range of fixes:

  • [1454307] Various fixes from internal audits, fuzzing and other initiatives

 

Many of our security bugs are detected using AddressSanitizer, MemorySanitizer,UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, or AFL.

Posted
The Stable channel has been updated to 115.0.5790.170 for Mac and Linux and 115.0.5790.170/.171 for Windows, which will roll out over the coming days/weeks. A full list of changes in this build is available in the log.
 

Security Fixes and Rewards

Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...