![](\"https:\/\/borncity.com\/blog\/wp-content\/uploads\/2015\/01\/Chrome.jpg\"\/)
Google hat die Version 60 seines Chrome-Browsers f\u00fcr Linux, Mac und Windows freigegeben. Die Version enth\u00e4lt 40 Sicherheitsfixes und bringt f\u00fcr Entwickler zahlreiche neue API-Funktionen.<\/p>\nGoogle hat die Version 60 seines Chrome-Browsers f\u00fcr Linux, Mac und Windows freigegeben. Die Version enth\u00e4lt 40 Sicherheitsfixes und bringt f\u00fcr Entwickler zahlreiche neue API-Funktionen.<\/p>\n
<\/p>\n
[$10000][728887<\/a>] High <\/strong>CVE-2017-5091: Use after free in IndexedDB. Reported by Ned Williamson on 2017-06-02<\/em> <\/p>\n [$5000][733549<\/a>] High <\/strong>CVE-2017-5092: Use after free in PPAPI. Reported by Yu Zhou, Yuan Deng of Ant-financial Light-Year Security Lab (\u8682\u8681\u91d1\u670d\u5df4\u65af\u5149\u5e74\u5b89\u5168\u5b9e\u9a8c\u5ba4) on 2017-06-15<\/em> <\/p>\n [$3000][550017<\/a>] High <\/strong>CVE-2017-5093: UI spoofing in Blink. Reported by Luan Herrera on 2015-10-31<\/em> <\/p>\n [$1000][702946<\/a>] High <\/strong>CVE-2017-5094: Type confusion in extensions. Reported by Anonymous on 2017-03-19<\/em> <\/p>\n [$1000][732661<\/a>] High <\/strong>CVE-2017-5095: Out-of-bounds write in PDFium. Reported by Anonymous on 2017-06-13<\/em> <\/p>\n [$TBD][714442<\/a>] High <\/strong>CVE-2017-5096: User information leak via Android intents. Reported by Takeshi Terada on 2017-04-23<\/em> <\/p>\n [$TBD][740789<\/a>] High <\/strong>CVE-2017-5097: Out-of-bounds read in Skia. Reported by Anonymous on 2017-07-11<\/em> <\/p>\n [$TBD][740803<\/a>] High <\/strong>CVE-2017-5098: Use after free in V8. Reported by Jihoon Kim on 2017-07-11<\/em> <\/p>\n [$N\/A][733548<\/a>] High <\/strong>CVE-2017-5099: Out-of-bounds write in PPAPI. Reported by Yuan Deng, Yu Zhou of Ant-financial Light-Year Security Lab (\u8682\u8681\u91d1\u670d\u5df4\u65af\u5149\u5e74\u5b89\u5168\u5b9e\u9a8c\u5ba4) on 2017-06-15<\/em> <\/p>\n [$2000][718292<\/a>] Medium <\/strong>CVE-2017-5100: Use after free in Chrome Apps. Reported by Anonymous on 2017-05-04<\/em> <\/p>\n [$1000][681740<\/a>] Medium <\/strong>CVE-2017-5101: URL spoofing in OmniBox. Reported by Luan Herrera on 2017-01-17<\/em> <\/p>\n [$1000][727678<\/a>] Medium <\/strong>CVE-2017-5102: Uninitialized use in Skia. Reported by Anonymous on 2017-05-30<\/em> <\/p>\n [$500][726199<\/a>] Medium <\/strong>CVE-2017-5103: Uninitialized use in Skia. Reported by Anonymous on 2017-05-25<\/em> <\/p>\n [$500][729105<\/a>] Medium <\/strong>CVE-2017-5104: UI spoofing in browser. Reported by Khalil Zhani on 2017-06-02<\/em> <\/p>\n [$N\/A][742407<\/a>] Medium <\/strong>CVE-2017-7000: Pointer disclosure in SQLite. Reported by Chaitin Security Research Lab (@ChaitinTech) working with Trend Micro's Zero Day Initiative<\/em> <\/p>\n [$1000][729979<\/a>] Low <\/strong>CVE-2017-5105: URL spoofing in OmniBox. Reported by Rayyan Bijoora on 2017-06-06<\/em> <\/p>\n [$TBD][714628<\/a>] Medium <\/strong>CVE-2017-5106: URL spoofing in OmniBox. Reported by Jack Zac on 2017-04-24<\/em> <\/p>\n [$N\/A][686253<\/a>] Low <\/strong>CVE-2017-5107: User information leak via SVG. Reported by David Kohlbrenner of UC San Diego on 2017-01-27<\/em> <\/p>\n [$N\/A][695830<\/a>] Low <\/strong>CVE-2017-5108: Type confusion in PDFium. Reported by Guang Gong of Alpha Team, Qihoo 360 on 2017-02-24<\/em> <\/p>\n [$N\/A][710400<\/a>] Low <\/strong>CVE-2017-5109: UI spoofing in browser. Reported by Jos\u00e9 Mar\u00eda Acu\u00f1a Morgado on 2017-04-11<\/em> <\/p>\n [$N\/A][717476<\/a>] Low <\/strong>CVE-2017-5110: UI spoofing in payments dialog. Reported by xisigr of Tencent's Xuanwu Lab on 2017-05-02<\/em> <\/p>\n Details zu Verbesserungen finden sich z.B. in diesem Bleeping-Computer-Beitrag<\/a> \u2013 ein paar Details gibt es auch hier<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":" Google hat die Version 60 seines Chrome-Browsers f\u00fcr Linux, Mac und Windows freigegeben. Die Version enth\u00e4lt 40 Sicherheitsfixes und bringt f\u00fcr Entwickler zahlreiche neue API-Funktionen.<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1356],"tags":[984],"class_list":["post-192613","post","type-post","status-publish","format-standard","hentry","category-google-chrome-internet","tag-google-chrome"],"_links":{"self":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/192613","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/comments?post=192613"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/192613\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/media?parent=192613"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/categories?post=192613"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/tags?post=192613"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}Die gr\u00f6\u00dfte Neuerung ist wohl das Paint Timing API, welches Entwicklern die Messung der Zeit zum Anzeigen einer Webseite erm\u00f6glicht. Weiterhin kann ein Entwickler vorgeben, dass Chrome die Standard-Fonts des Betriebssystems verwendet. Die Ank\u00fcndigung vom 25. Juli 2017 f\u00fcr Chrome 60.0.3112.78 findet sich im Chrome-Blog<\/a>. Hier die Liste der Sicherheitsfixes.<\/p>\n