4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.512 Medium
EPSS
Percentile
97.6%
Google Chrome’s Beta and Stable channels have been updated to 1.0.154.48.
The change in 1.0.154.46 to fix Hotmail caused a problem for users in Incognito mode trying to access sites which depend on the User-Agent header. This header identifies the type of browser making the request and should be part of every request, even in Incognito mode. This issue is now fixed. There is also a security fix for a bug (analogous to CVE-2007-3670) where command line arguments could be injected and executed by getting a user to click a link in certain other browsers.
See http://dev.chromium.org/getting-involved/dev-channel/release-notes for the release notes.
Jonathan Conradt
Engineering Program Manager
Mountain View, CA
CPE | Name | Operator | Version |
---|---|---|---|
google chrome | lt | 1.0.154.48. |