{"id":17013,"date":"2020-12-07T00:35:54","date_gmt":"2020-12-06T23:35:54","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=17013"},"modified":"2020-12-07T00:35:54","modified_gmt":"2020-12-06T23:35:54","slug":"chrome-87-0-4280-88","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2020\/12\/07\/chrome-87-0-4280-88\/","title":{"rendered":"Chrome 87.0.4280.88"},"content":{"rendered":"<p><img decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline\" src=\"https:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2015\/01\/Chrome.jpg\">[<a href=\"https:\/\/www.borncity.com\/blog\/2020\/12\/07\/chrome-87-0-4280-88\/\" target=\"_blank\" rel=\"noopener noreferrer\">German<\/a>]Google has updated the Google Chrome Browser for Windows, macOS and Linux to version 87.0.4280.88 on December 2, 2020. This update closes eight vulnerabilities.<!--more--><\/p>\n<p>I came across the update on <a href=\"https:\/\/twitter.com\/heisec\/status\/1335534726615085056\" target=\"_blank\" rel=\"noopener noreferrer\">Twitter<\/a>. In the Google blog there is <a href=\"https:\/\/chromereleases.googleblog.com\/2020\/12\/stable-channel-update-for-desktop.html\" target=\"_blank\" rel=\"noopener noreferrer\">this post<\/a>, documenting six vulnerabilities closed in Chrome 87.0.4280.88 for the desktop.<\/p>\n<ul>\n<li>[$5000][1142331] High CVE-2020-16037: Use after free in clipboard. Reported by Ryoya Tsukasaki on 2020-10-26\n<li>[$TBD][1138683] High CVE-2020-16038: Use after free in media. Reported by Khalil Zhani on 2020-10-14\n<li>[$TBD][1149177] High CVE-2020-16039: Use after free in extensions. Reported by Anonymous on 2020-11-15\n<li>[$TBD][1150649] High CVE-2020-16040: Insufficient data validation in V8. Reported by Lucas Pinheiro, Microsoft Browser Vulnerability Research on 2020-11-19\n<li>[$TBD][1151865] Medium CVE-2020-16041: Out of bounds read in networking. Reported by Sergei Glazunov and Mark Brand of Google Project Zero on 2020-11-23\n<li>[$TBD][1151890] Medium CVE-2020-16042: Uninitialized Use in V8. Reported by Andr\u00e9 Bargull on 2020-11-23<\/li>\n<\/ul>\n<p>Some of the vulnerabilities are rated High. The Chrome version for Windows, Mac and Linux will be rolled out to the systems in the next few days via automatic update. You can also download this build <a href=\"https:\/\/www.google.com\/intl\/de_de\/chrome\/\" target=\"_blank\" rel=\"noopener noreferrer\">here<\/a>. <\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]Google has updated the Google Chrome Browser for Windows, macOS and Linux to version 87.0.4280.88 on December 2, 2020. This update closes eight vulnerabilities.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[872,580,22],"tags":[780,69,195],"class_list":["post-17013","post","type-post","status-publish","format-standard","hentry","category-browser","category-security","category-update","tag-chrome","tag-security","tag-update"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/17013","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=17013"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/17013\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=17013"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=17013"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=17013"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}