<<<
Thursday, October 1, 2009
>>>
 
Google Chrome Update? Posted by Sean @ 13:51 GMT

I was updating the browsers on one of my VMware images today:

Chrome/Internet Explorer/Firefox/Safari/Opera

And I updated Google Chrome to version 3.0.195.24:

Chrome3.0.195.24

Version 3.0.195.24 resolves a security vulnerability which could allow an attacker to run arbitrary code within the Google Chrome sandbox.

Only… the update didn't delete the vulnerable files during installation:

Chrome3.0.195.21, Folder

So while Chrome may no longer be using the vulnerable file, the old chrome.dll remains on my VMware system:

Chrome3.0.195.21, Chrome.dll

If something such as Sun Java can finally uninstall old versions, don't you think Google Chrome should be able to do so too?

Does anyone else notice this on their systems?

Signing off,
Sean






<<< Samoa Earthquake News Leads To Rogue AV
|
National Cybersecurity Awareness Month >>>