[German]Google has released Google Chrome version 108.0.5359.124/125 in the stable channel for Mac, Linux and Windows on December 13, 2022. These updates close eight vulnerabilities, some of which are rated high, and probably fix bugs. Thanks to reader EP for pointing this out. In addition, the Chrome Android app has also received an update.
Google Chrome Chrome 108.0.5359.124/.125
The relevant entry for Chrome 108.0.5359.12x can be found on the Google blog. The stable channel has been updated to version 108.0.5359.124 for Mac and Linux. For Windows, the update updates to version 108.0.5359.124/.125. The update closes eight vulnerabilities, the following are mentioned explicit.
- [$7000] High CVE-2022-4436: Use after free in Blink Media. Reported by Anonymous on 2022-11-15
- [$6000] High CVE-2022-4437: Use after free in Mojo IPC. Reported by koocola(@alo_cook) and Guang Gong of 360 Vulnerability Research Institute on 2022-11-30
- [$1500] High CVE-2022-4438: Use after free in Blink Frames. Reported by Anonymous on 2022-11-07
- [$TBD] High CVE-2022-4439: Use after free in Aura. Reported by Anonymous on 2022-11-22
- [$3000] Medium CVE-2022-4440: Use after free in Profiles. Reported by Anonymous on 2022-11-09
Google also states that various fixes have been made based on results from internal audits, fuzzing and other initiatives. Chrome will be rolled out to systems via the automatic update feature over the next few days. One can (and in this case should) also update the browser manually (via the menu and the About Google Chrome command). The latest build of the Chrome browser can also be downloaded here.
Tip: Does Chrome shows an an upgrade notice, saying the operating system reaches the end of support in 2023, under Windows 7/8.1 or Windows Server 2012 R2? In the blog post Windows 7/8.1/Server 2012R2: Deactivate Google Chrome notification to upgrade to Windows 10 I have published the registry entries for various browsers to suppress the notice.
Chrome for Android 108.0.5359.128
According to this entry, the Chrome Android app was updated to version 108.0.5359.128 on December 13, 2022. This version includes stability and performance improvements and closes the same vulnerabilities as the desktop versions. The app will be updated via the Google Play Store in the coming days.
Cookies helps to fund this blog: Cookie settings
i noticed a (new?) "playing media" notification in the drop down panel whenever media is playing or paused while the medias origin tab remains in focus..
just to clarify, in the example i am describing, im playing "blackened" by metallica from a youtube channel named "cristiano dias"… the notification has a small album art thumbnail on the far left side, and it says "this phone" to the immediate right of the thumbnail, with the artist and track and channel name listed underneath. There is also a play button on the far right side..
this notification cant be slid to the side to remove it, and it only disappears when the media completes playback and stops, or when focus is changed to a different tab.
i cant seem to disable this "feature" no matter what i do..
disabling all chrome notifications does nothing, neither does trying to configure the settings in the "play media" notification category..
even with all the chrome notifications turned off, it still appears in the notification panel as soon as any media begins playback.
if anybody knows some way to turn this off permanently (like with a flag setting or something) PLEASE email me if you can @ [*** removed for privacy reasons] @gmail.com to let me know… idk if replying to this comment will provide me with a notification to let me know to come check it or not, so email just works better for me.
thanks in advance, either way.
If somebody knows a solution, left a comment here. I'm able to send Mike a mail – for GDPR-Reasons I filter personal data like phone numbers, e-mail-addresses etc.