{"id":12656,"date":"2020-01-17T13:39:33","date_gmt":"2020-01-17T12:39:33","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=12656"},"modified":"2020-01-17T17:10:02","modified_gmt":"2020-01-17T16:10:02","slug":"chrome-79-0-3945-130","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2020\/01\/17\/chrome-79-0-3945-130\/","title":{"rendered":"Chrome 79.0.3945.130"},"content":{"rendered":"<p><img decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline;\" src=\"http:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2015\/01\/Chrome.jpg\" align=\"left\" \/>[<a href=\"https:\/\/www.borncity.com\/blog\/2020\/01\/17\/chrome-79-0-3945-130\/\" target=\"_blank\" rel=\"noopener noreferrer\">German<\/a>] Google's developers have just released Chrome 79.0.3945.130. The browser update closes 11 vulnerabilities in total, but Google don't reaveal details about that.<\/p>\n<p><!--more--><\/p>\n<p>In the <a href=\"https:\/\/chromereleases.googleblog.com\/2020\/01\/stable-channel-update-for-desktop_16.html\" target=\"_blank\" rel=\"noopener noreferrer\">release notes<\/a> the following security fixes are listed for the desktop (it's only a part of all 11 vulnerabilities closed).<\/p>\n<ul>\n<li>[<a href=\"https:\/\/crbug.com\/1018677\" target=\"_blank\" rel=\"noopener noreferrer\">1018677<\/a>] Critical CVE-2020-6378: Use-after-free in speech recognizer. Reported by Antti Levom\u00e4ki and Christian Jalio from Forcepoint on 2019-10-28<\/li>\n<li>[<a href=\"https:\/\/crbug.com\/1033407\" target=\"_blank\" rel=\"noopener noreferrer\">1033407<\/a>] High CVE-2020-6379: Use-after-free in speech recognizer. Reported by Guang Gong of Alpha Team, Qihoo 360 on 2019-12-12<\/li>\n<li>[<a href=\"https:\/\/crbug.com\/1032170\" target=\"_blank\" rel=\"noopener noreferrer\">1032170<\/a>] High CVE-2020-6380: Extension message verification error. Reported by Sergei Glazunov of Google Project Zero on 2019-12-09<\/li>\n<li>[<a href=\"https:\/\/crbug.com\/1040772\" target=\"_blank\" rel=\"noopener noreferrer\">1040772<\/a>] High N\/A: Protections to mitigate Windows ECC certificate validation vulnerability CVE-2020-0601.<\/li>\n<\/ul>\n<p>The release note also mentions <em>[<\/em><a href=\"https:\/\/crbug.com\/1042448\" target=\"_blank\" rel=\"noopener noreferrer\">1042448<\/a><em>] Various fixes from internal audits, fuzzing and other initiatives.<\/em> Details will not be disclosed by Google. A list of changes can be found on this <a href=\"https:\/\/chromium.googlesource.com\/chromium\/src\/+log\/79.0.3945.117..79.0.3945.130?pretty=fuller&amp;n=10000\" target=\"_blank\" rel=\"noopener noreferrer\">log page<\/a>.\u00a0 A change is also, that the new Chrome mitigates the CryptoAPI vulnerability within the browser for unpatched systems. The vulnerability has been reported by NSA and Microsoft patched it on Windows 10\/Server 2016\/2019 in January 2020.<\/p>\n<p>Chrome version 79.0.3945.130 is available for Windows, Mac and Linux and will be rolled out to the systems via the automatic update function in the next few days. You can <a href=\"https:\/\/www.google.com\/intl\/de_de\/chrome\/\" target=\"_blank\" rel=\"noopener noreferrer\">download it here<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German] Google's developers have just released Chrome 79.0.3945.130. The browser update closes 11 vulnerabilities in total, but Google don't reaveal details about that.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[872,580,1547,22],"tags":[780,69,195],"class_list":["post-12656","post","type-post","status-publish","format-standard","hentry","category-browser","category-security","category-software","category-update","tag-chrome","tag-security","tag-update"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/12656","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=12656"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/12656\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=12656"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=12656"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=12656"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}