Google Chrome Changelog

New in version 42.0.2311.22 Beta

March 10th, 2015
  • A number of new apps/extension APIs (including the Push API!)
  • Lots of under the hood changes for stability and performance
  • The answer to life, the universe, and everything

New in version 41.0.2272.76 (March 4th, 2015)

  • A number of new apps/extension APIs
  • Lots of under the hood changes for stability and performance

New in version 40.0.2214.111 (February 5th, 2015)

  • This update includes 11 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chromium security page for more information:
  • [447906] High CVE-2015-1209: Use-after-free in DOM. Credit to Maksymillian Motyl.
  • [453979] High CVE-2015-1210: Cross-origin-bypass in V8 bindings. Credit to anonymous.
  • [453982] High CVE-2015-1211: Privilege escalation using service workers. Credit to anonymous.
  • As usual, our ongoing internal security work was responsible for a wide range of fixes:
  • [455225] CVE-2015-1212: Various fixes from internal audits, fuzzing and other initiatives.

New in version 41.0.2272.16 Beta (January 22nd, 2015)

  • A number of new apps/extension APIs
  • Lots of under the hood changes for stability and performance

New in version 40.0.2214.91 (January 21st, 2015)

  • Updated Chrome app info dialog for Windows and Linux.
  • A new clock behind/ahead error message.
  • Security Fixes and Rewards:
  • This update includes 62 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chromium security page for more information.
  • [$5000][430353] High CVE-2014-7923: Memory corruption in ICU. Credit to yangdingning.
  • [$4500][435880] High CVE-2014-7924: Use-after-free in IndexedDB. Credit to Collin Payne.
  • [$4000][434136] High CVE-2014-7925: Use-after-free in WebAudio. Credit to mark.buer.
  • [$4000][422824] High CVE-2014-7926: Memory corruption in ICU. Credit to yangdingning.
  • [$3500][444695] High CVE-2014-7927: Memory corruption in V8. Credit to Christian Holler.
  • [$3500][435073] High CVE-2014-7928: Memory corruption in V8. Credit to Christian Holler.
  • [$3000][442806] High CVE-2014-7930: Use-after-free in DOM. Credit to cloudfuzzer.
  • [$3000][442710] High CVE-2014-7931: Memory corruption in V8. Credit to cloudfuzzer.
  • [$2000][443115] High CVE-2014-7929: Use-after-free in DOM. Credit to cloudfuzzer.
  • [$2000][429666] High CVE-2014-7932: Use-after-free in DOM. Credit to Atte Kettunen of OUSPG.
  • [$2000][427266] High CVE-2014-7933: Use-after-free in FFmpeg. Credit to aohelin.
  • [$2000][427249] High CVE-2014-7934: Use-after-free in DOM. Credit to cloudfuzzer.
  • [$2000][402957] High CVE-2014-7935: Use-after-free in Speech. Credit to Khalil Zhani.
  • [$1500][428561] High CVE-2014-7936: Use-after-free in Views. Credit to Christoph Diehl.
  • [$1500][419060] High CVE-2014-7937: Use-after-free in FFmpeg. Credit to Atte Kettunen of OUSPG.
  • [$1000][416323] High CVE-2014-7938: Memory corruption in Fonts. Credit to Atte Kettunen of OUSPG.
  • [$1000][399951] High CVE-2014-7939: Same-origin-bypass in V8. Credit to Takeshi Terada.
  • [$1000][433866] Medium CVE-2014-7940: Uninitialized-value in ICU. Credit to miaubiz.
  • [$1000][428557] Medium CVE-2014-7941: Out-of-bounds read in UI. Credit to Atte Kettunen of OUSPG and Christoph Diehl.
  • [$1000][426762] Medium CVE-2014-7942: Uninitialized-value in Fonts. Credit to miaubiz.
  • [$1000][422492] Medium CVE-2014-7943: Out-of-bounds read in Skia. Credit to Atte Kettunen of OUSPG.
  • [$1000][418881] Medium CVE-2014-7944: Out-of-bounds read in PDFium. Credit to cloudfuzzer.
  • [$1000][414310] Medium CVE-2014-7945: Out-of-bounds read in PDFium. Credit to cloudfuzzer.
  • [$1000][414109] Medium CVE-2014-7946: Out-of-bounds read in Fonts. Credit to miaubiz.
  • [$500][430566] Medium CVE-2014-7947: Out-of-bounds read in PDFium. Credit to fuzztercluck.
  • [$500][414026] Medium CVE-2014-7948: Caching error in AppCache. Credit to jiayaoqijia.
  • As usual, our ongoing internal security work was responsible for a wide range of fixes:
  • [449894] Various fixes from internal audits, fuzzing and other initiatives.
  • Multiple vulnerabilities in V8 fixed at the tip of the 3.30 branch (currently 3.30.33.15).

New in version 39.0.2171.99 (January 13th, 2015)

  • This release contains an update for Adobe Flash as well as a number of other fixes.

New in version 39.0.2171.95 (December 9th, 2014)

  • This release contains an update for Adobe Flash as well as a number of other fixes.

New in version 39.0.2171.71 (November 25th, 2014)

  • This release contains an update for Adobe Flash as well as a number of other fixes.

New in version 40.0.2214.10 Beta (November 21st, 2014)

  • Profile Lock, which introduces the ability to "child lock" signed-in profiles.
  • New Tabs Page Suggestions, which tries to determine which sites you'd like to visit depending on the the time and day.
  • New crash recovery UI.

New in version 39.0.2171.65 (November 18th, 2014)

  • New Features:
  • 64-bit support for Mac
  • A number of new apps/extension APIs
  • Lots of under the hood changes for stability and performance
  • Security Fixes:
  • High CVE-2014-7899: Address bar spoofing.
  • High CVE-2014-7900: Use-after-free in pdfium.
  • High CVE-2014-7901: Integer overflow in pdfium.
  • High CVE-2014-7902: Use-after-free in pdfium.
  • High CVE-2014-7903: Buffer overflow in pdfium.
  • High CVE-2014-7904: Buffer overflow in Skia.
  • High CVE-2014-7905: Flaw allowing navigation to intents that do not have the BROWSABLE category.
  • High CVE-2014-7906: Use-after-free in pepper plugins.
  • High CVE-2014-0574: Double-free in Flash.
  • High CVE-2014-7907: Use-after-free in blink.
  • High CVE-2014-7908: Integer overflow in media.
  • Medium CVE-2014-7909: Uninitialized memory read in Skia.

New in version 38.0.2125.101 (October 8th, 2014)

  • A number of new apps/extension APIs
  • Lots of under the hood changes for stability and performance

New in version 38.0.2125.58 Beta (September 11th, 2014)

  • With this release Chrome Mac is 32-bit and will continue to be 32-bit when Chrome 38 goes to stable. With the release of Chrome 39, we will be moving Mac to 64-bit and will no longer support 32-bit NPAPI plugins.

New in version 37.0.2062.120 (September 9th, 2014)

  • This release contains an update for Adobe Flash as well as a number of other fixes.
  • This update includes 4 security fixes.

New in version 38.0.2125.24 Beta (August 29th, 2014)

  • New experimental user switching design which makes changing profiles and into incognito mode simpler.
  • A new experimental Guest mode.
  • Experimental UI for Chrome supervised users.
  • Lots of under the hood changes for stability and performance.

New in version 37.0.2062.94 (August 26th, 2014)

  • DirectWrite support on Windows for improved font rendering
  • A number of new apps/extension APIs
  • Lots of under the hood changes for stability and performance
  • This update includes 50 security fixes. Below, we highlight fixes that were either contributed by external researchers or particularly interesting:
  • [$30000][386988] Critical CVE-2014-3176, CVE-2014-3177: A special reward to lokihardt@asrt for a combination of bugs in V8, IPC, sync, and extensions that can lead to remote code execution outside of the sandbox.
  • [$2000][369860] High CVE-2014-3168: Use-after-free in SVG. Credit to cloudfuzzer.
  • [$2000][387389] High CVE-2014-3169: Use-after-free in DOM. Credit to Andrzej Dyjak.
  • [$1000][390624] High CVE-2014-3170: Extension permission dialog spoofing. Credit to Rob Wu.
  • [$4000][390928] High CVE-2014-3171: Use-after-free in bindings. Credit to cloudfuzzer.
  • [$1500][367567] Medium CVE-2014-3172: Issue related to extension debugging. Credit to Eli Grey.
  • [$2000][376951] Medium CVE-2014-3173: Uninitialized memory read in WebGL. Credit to jmuizelaar.
  • [$500][389219] Medium CVE-2014-3174: Uninitialized memory read in Web Audio. Credit to Atte Kettunen from OUSPG.

New in version 36.0.1985.143 (August 12th, 2014)

  • This update includes 12 security fixes.

New in version 37.0.2062.20 Beta (July 17th, 2014)

  • DirectWrite support on Windows
  • A new password manager UI
  • Automatic reload of unreachable pages when network becomes available
  • Dropped Chrome sign-in requirement for Chrome Apps
  • A number of new apps/extension APIs
  • Lots of under the hood changes for stability and performance

New in version 36.0.1985.122 (July 16th, 2014)

  • Rich Notifications Improvements
  • An Updated Incognito / Guest NTP design
  • The addition of a Browser crash recovery bubble
  • Chrome App Launcher for Linux
  • Lots of under the hood changes for stability and performance

New in version 35.0.1916.153 (June 10th, 2014)

  • This update includes 4 security fixes:
  • CVE-2014-3154: Use-after-free in filesystem API.
  • CVE-2014-3155: Out-of-bounds read in SPDY.
  • CVE-2014-3156: Buffer overflow in clipboard.
  • CVE-2014-3157: Heap overflow in media.

New in version 36.0.1985.18 Beta (May 22nd, 2014)

  • New Chrome app launcher for Linux
  • A number of new apps/extension APIs
  • Lots of under the hood changes for stability and performance

New in version 35.0.1916.114 (May 20th, 2014)

  • More developer control over touch input
  • New JavaScript features
  • Unprefixed Shadow DOM
  • A number of new apps/extension APIs
  • Lots of under the hood changes for stability and performance
  • This update includes 23 security fixes

New in version 36.0.1985.8 Dev (May 16th, 2014)

  • Fixes and improvements:
  • Introduce a new framework for back-and-forth tracked preference migration between Protected Preferences and unprotected Preferences.
  • Fix the compile error for win64: widevine_key_systems.cc.
  • Prefer GL_ARB_sync/ES3 fences
  • Fix an issue that jni generator is ignoring input param

New in version 34.0.1847.137 (May 13th, 2014)

  • Bug fixes:
  • High CVE-2014-1740: Use-after-free in WebSockets.
  • High CVE-2014-1741: Integer overflow in DOM ranges.
  • High CVE-2014-1742: Use-after-free in editing.

New in version 35.0.1916.27 Beta (April 10th, 2014)

  • More developer control over touch input
  • New JavaScript features
  • Unprefixed Shadow DOM
  • A number of new apps/extension APIs
  • Lots of under the hood changes for stability and performance

New in version 34.0.1847.116 (April 8th, 2014)

  • Responsive Images and Unprefixed Web Audio
  • Import supervised users onto new computers
  • A number of new apps/extension APIs
  • A different look for Win8 Metro mode
  • Lots of under the hood changes for stability and performance

New in version 33.0.1750.12 (March 15th, 2014)

  • [$100,000] [352369] Code execution outside sandbox. Credit to VUPEN.
  • [352374] High CVE-2014-1713: Use-after-free in Blink bindings
  • [$60,000] [352420] Code execution outside sandbox. Credit to Anonymous.
  • [351787] High CVE-2014-1705: Memory corruption in V8
  • [352429] High CVE-2014-1715: Directory traversal issue

New in version 33.0.1750.149 (March 11th, 2014)

  • This update includes 7 security fixes.

New in version 33.0.1750.146 (March 4th, 2014)

  • This update includes 19 security fixes.

New in version 34.0.1847.14 Beta (February 27th, 2014)

  • Responsive Images and Unprefixed Web Audio
  • Hands-free Google Voice Search in Chrome
  • Import supervised users onto new computers
  • A number of new apps/extension APIs
  • Lots of under the hood changes for stability and performance

New in version 33.0.1750.117 (February 20th, 2014)

  • This update includes 28 security fixes. Below, we highlight fixes that were either contributed by external researchers or particularly interesting.
  • [$2000][334897] High CVE-2013-6652: Issue with relative paths in Windows sandbox named pipe policy. Credit to tyranid.
  • [$1000][331790] High CVE-2013-6653: Use-after-free related to web contents. Credit to Khalil Zhani.
  • [$3000][333176] High CVE-2013-6654: Bad cast in SVG. Credit to TheShow3511.
  • [$3000][293534] High CVE-2013-6655: Use-after-free in layout. Credit to cloudfuzzer.
  • [$500][331725] High CVE-2013-6656: Information leak in XSS auditor. Credit to NeexEmil.
  • [$1000][331060] Medium CVE-2013-6657: Information leak in XSS auditor. Credit to NeexEmil.
  • [$2000][322891] Medium CVE-2013-6658: Use-after-free in layout. Credit to cloudfuzzer.
  • [$1000][306959] Medium CVE-2013-6659: Issue with certificates validation in TLS handshake. Credit to Antoine Delignat-Lavaud and Karthikeyan Bhargavan from Prosecco, Inria Paris.
  • [332579] Low CVE-2013-6660: Information leak in drag and drop. Credit to bishopjeffreys.
  • As usual, our ongoing internal security work responsible for a wide range of fixes:
  • [344876] Low-High CVE-2013-6661: Various fixes from internal audits, fuzzing and other initiatives. Of these, seven are fixes for issues that could have allowed for sandbox escapes from compromised renderers.

New in version 32.0.1700.102 (January 27th, 2014)

  • Mouse Pointer disappears after exiting full-screen mode.
  • Drag and drop files into Chrome may not work properly.
  • Quicktime Plugin crashes in Chrome.
  • Chrome becomes unresponsive.
  • Trackpad users may not be able to scroll horizontally.
  • Scrolling does not work in combo box.
  • Chrome does not work with all CSS minifiers such as whitespace around a media query's `and` keyword.
  • This update includes 14 security fixes.

New in version 32.0.1700.77 (January 14th, 2014)

  • Tab indicators for sound, webcam and casting
  • A different look for Win8 Metro mode
  • Automatically blocking malware files
  • A number of new apps/extension APIs
  • Lots of under the hood changes for stability and performance
  • Flash Player has been updated to version 12.0.0.41
  • This update includes 11 security fixes

New in version 32.0.1700.77 Beta (January 14th, 2014)

  • This release fixes the vertical and horizontal scrolling issues (332797 and 320849). If you continue to see issues after the update please add comments to the bugs.

New in version 33.0.1736.3 Dev (December 13th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 31.0.1650.63 (December 4th, 2013)

  • CVE-2013-6634: Session fixation in sync related to 302 redirects.
  • CVE-2013-6635: Use-after-free in editing.
  • CVE-2013-6636: Address bar spoofing related to modal dialogs.
  • CVE-2013-6637: Various fixes from internal audits, fuzzing and other initiatives.
  • CVE-2013-6638: Buffer overflow in v8. This issue was fixed in v8 version 3.22.24.7.
  • CVE-2013-6639: Out of bounds write in v8. This issue was fixed in v8 version 3.22.24.7
  • CVE-2013-6640: Out of bounds read in v8. This issue was fixed in v8 version 3.22.24.7.

New in version 32.0.1700.39 Beta (December 3rd, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 33.0.1711.3 Dev (November 20th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 32.0.1700.19 Beta (November 19th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 31.0.1650.57 (November 14th, 2013)

  • Fixed multiple memory corruption issues.

New in version 32.0.1700.14 Beta (November 13th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 31.0.1650.48 (November 12th, 2013)

  • This update includes 25 security fixes.

New in version 32.0.1700.6 Beta (November 11th, 2013)

  • Tab indicators for sound, webcam and casting
  • A different look for Win8 Metro mode
  • Automatically blocking malware files
  • A number of new apps/extension APIs
  • Lots of under the hood changes for stability and performance

New in version 31.0.1650.48 Beta (November 9th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 32.0.1685.0 Dev (October 29th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 31.0.1650.34 Beta (October 24th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 30.0.1599.114 (October 22nd, 2013)

  • This should resolve the issues with installing the 32-bit version of Chrome.

New in version 31.0.1650.26 Beta (October 17th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 32.0.1671.3 Dev (October 16th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 30.0.1599.101 (October 16th, 2013)

  • This update includes 5 security fixes. Below, we highlight fixes that were either contributed by external researchers or particularly interesting:
  • [$1000][292422] High CVE-2013-2925: Use after free in XHR. Credit to Atte Kettunen of OUSPG.
  • [$2000][294456] High CVE-2013-2926: Use after free in editing. Credit to cloudfuzzer.
  • [$2000][297478] High CVE-2013-2927: Use after free in forms. Credit to cloudfuzzer.
  • As usual, our ongoing internal security work responsible for a wide range of fixes:
  • [305790] CVE-2013-2928: Various fixes from internal audits, fuzzing and other initiatives.

New in version 31.0.1650.11 Beta (October 10th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 32.0.1664.3 Dev (October 9th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 31.0.1650.8 Beta (October 3rd, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 31.0.1650.8 Dev (October 2nd, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 30.0.1599.66 (October 1st, 2013)

  • Easier searching by image
  • A number of new apps/extension APIs
  • Lots of under the hood changes for stability and performance

New in version 30.0.1599.66 Beta (September 27th, 2013)

  • This release fixes a few more of the new crashes in yesterday's morning's build.

New in version 31.0.1650.4 Dev (September 26th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 30.0.1599.65 Beta (September 26th, 2013)

  • This release fixes a few of the new crashes in this morning's build.

New in version 30.0.1599.59 Beta (September 25th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 31.0.1650.0 Dev (September 25th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 29.0.1547.76 (September 18th, 2013)

  • [278940] Canvas loses ability to render, is blank even if page reloaded
  • Other stability improvements

New in version 30.0.1599.47 Beta (September 18th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 30.0.1599.37 Beta (September 11th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 31.0.1626.0 Dev (September 11th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 31.0.1622.0 Dev (September 6th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 30.0.1599.28 Beta (September 4th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 29.0.1547.65 (September 2nd, 2013)

  • This version contains a Flash update, as well as fixes an issue with Sync.

New in version 30.0.1599.22 Beta (August 28th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 29.0.1547.62 (August 28th, 2013)

  • This update fixes an issue with printing from Google Docs applications.

New in version 31.0.1612.0 Dev (August 28th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 30.0.1599.14 Beta (August 23rd, 2013)

  • Easier searching by image
  • A number of new apps/extension APIs
  • Lots of under the hood changes for stability and performance

New in version 29.0.1547.57 (August 20th, 2013)

  • Improved Omnibox suggestions based on the recency sites you have visited
  • Ability to reset your profile back to its original state
  • Many new apps and extensions APIs
  • Lots of stability and performance improvements

New in version 30.0.1599.14 Dev (August 20th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 29.0.1547.57 Beta (August 17th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 30.0.1599.10 Dev (August 16th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 29.0.1547.55 Beta (August 15th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 30.0.1599.0 Dev (August 14th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 29.0.1547.49 Beta (August 8th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 30.0.1588.0 Dev (August 7th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 29.0.1547.41 Beta (August 2nd, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 28.0.1500.95 (July 31st, 2013)

  • This update includes 11 security fixes.

New in version 30.0.1581.2 Dev (July 31st, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 29.0.1547.32 Beta (July 25th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 29.0.1547.18 Dev (July 12th, 2013)

  • This release fixes a number of crashes and other bugs.

New in version 29.0.1547.15 Dev (July 9th, 2013)

  • This release fixes a number of crashes, as well as other bugs.

New in version 29.0.1547.0 Dev (June 26th, 2013)

  • This release fixes a number of crashes, as well as other bugs.

New in version 29.0.1541.2 Dev (June 19th, 2013)

  • This release fixes a number of crashes, as well as other bugs.

New in version 28.0.1500.45 (June 18th, 2013)

  • The minimum requirements for Linux have also been updated:
  • Ubuntu 12.04+
  • Debian 7+
  • OpenSuSE 12.2+
  • Fedora Linux 17+

New in version 29.0.1535.3 Dev (June 12th, 2013)

  • This release fixes a number of crashes, as well as other bugs.

New in version 29.0.1530.2 Dev (June 7th, 2013)

  • Fixed Issue: [244090] Cached CSS file is used regardless of media type

New in version 27.0.1453.110 (June 4th, 2013)

  • [Windows only] High CVE-2013-2854: Bad handle passed to renderer. Credit to Collin Payne.
  • Medium CVE-2013-2855: Memory corruption in dev tools API. Credit to “daniel.zulla”.
  • High CVE-2013-2856: Use-after-free in input handling. Credit to miaubiz.
  • High CVE-2013-2857: Use-after-free in image handling. Credit to miaubiz.
  • High CVE-2013-2858: Use-after-free in HTML5 Audio. Credit to “cdel921”.
  • High CVE-2013-2859: Cross-origin namespace pollution. Credit to “bobbyholley”.
  • High CVE-2013-2860: Use-after-free with workers accessing database APIs. Credit to Collin Payne.
  • High CVE-2013-2861: Use-after-free with SVG. Credit to miaubiz.
  • High CVE-2013-2862: Memory corruption in Skia GPU handling. Credit to Atte Kettunen of OUSPG.
  • Critical CVE-2013-2863: Memory corruption in SSL socket handling. Credit to Sebastien Marchand of the Chromium development community.
  • High CVE-2013-2864: Bad free in PDF viewer. Credit to Mateusz Jurczyk, with contributions by Gynvael Coldwind, both from Google Security Team.

New in version 29.0.1521.3 Dev (May 30th, 2013)

  • This release fixes some known crashes, as well as other bugs.

New in version 27.0.1453.93 (May 21st, 2013)

  • Web pages load 5% faster on average
  • chrome.syncFileSystem API
  • Improved ranking of predictions, improved spell correction, and numerous fundamental improvements for Omnibox predictions. Please see the Help Center for more information on our updated policies.
  • This update includes the following security fixes:
  • [$1000] [235638] High CVE-2013-2837: Use-after-free in SVG. Credit to Sławomir Błażek.
  • [$500] [235311] Medium CVE-2013-2838: Out-of-bounds read in v8. Credit to Christian Holler.
  • [$1500] [230176] High CVE-2013-2839: Bad cast in clipboard handling. Credit to Jon of MWR InfoSecurity.
  • [$1000] [230117] High CVE-2013-2840: Use-after-free in media loader. Credit to Nils of MWR InfoSecurity.
  • [$1000] [227350] High CVE-2013-2841: Use-after-free in Pepper resource handling. Credit to Chamal de Silva.
  • [$2000] [226696] High CVE-2013-2842: Use-after-free in widget handling. Credit to Cyril Cattiaux.
  • [$1000] [222000] High CVE-2013-2843: Use-after-free in speech handling. Credit to Khalil Zhani.
  • [$1000] [196393] High CVE-2013-2844: Use-after-free in style resolution. Credit to Sachin Shinde (@cons0ul).
  • [$3133.7] [188092] [179522] [222136] [188092] High CVE-2013-2845: Memory safety issues in Web Audio. Credit to Atte Kettunen of OUSPG.
  • [$1000] [177620] High CVE-2013-2846: Use-after-free in media loader. Credit to Chamal de Silva.
  • [$1000] [176692] High CVE-2013-2847: Use-after-free race condition with workers. Credit to Collin Payne.
  • [$500] [176137] Medium CVE-2013-2848: Possible data extraction with XSS Auditor. Credit to Egor Homakov.
  • [171392] Low CVE-2013-2849: Possible XSS with drag+drop or copy+paste. Credit to Mario Heiderich.
  • In addition, our ongoing internal security work was as usual responsible for a wide range of fixes:
  • [241595] High CVE-2013-2836: Various fixes from internal audits, fuzzing and other initiatives.
  • This build also contains a new Adobe Flash build.

New in version 28.0.1500.20 Dev (May 21st, 2013)

  • This build addresses some known regressions and stability issues.

New in version 28.0.1500.11 Dev (May 14th, 2013)

  • This build addresses some known regressions and stability issues.

New in version 28.0.1500.3 Dev (May 8th, 2013)

  • This build addresses some known regressions and stability issues.

New in version 28.0.1496.0 Dev (May 3rd, 2013)

  • This build addresses some known regressions and stability issues.

New in version 28.0.1485.0 Dev (April 23rd, 2013)

  • This build addresses some known regressions and stability issues.

New in version 26.0.1410.63 (April 9th, 2013)

  • This release contains stability improvements, and a new version of Adobe Flash.

New in version 27.0.1453.15 Beta (April 5th, 2013)

  • Faster page loads
  • Elegant HTML5 date and time forms
  • Live audio input to Web Audio API
  • Sync FileSystem API for Chrome Apps
  • DevTools updates
  • And lots of other features for developers

New in version 27.0.1453.12 Alpha (April 3rd, 2013)

  • This build addresses some known regressions and stability issues.

New in version 26.0.1410.43 (March 27th, 2013)

  • "Ask Google for suggestions" spell checking feature improvements (e.g. grammar and homonym checking)
  • Desktop shortcuts for multiple users (profiles) on Windows
  • Asynchronous DNS resolver on Mac and Linux

New in version 26.0.1410.40 Beta (March 21st, 2013)

  • Fixed stability crashes. [Issues: 166397, 172319, 189889, 180445]
  • Fixed sign-in issue in Incognito session. [Issue: 180183]
  • Fixed shortcut issue in enterprise. [Issue: 174465]
  • Fixed floppy drive issue. [Issue: 173953]
  • Fixed bug where extension popups would not properly receive input focus when first shown. [Issue: 122352]
  • Fixed views omnibox unfocused double-click behavior. [Issue: 165873]
  • Show strings in content settings bubble when access to cookies is allowed. [Issue: 181172]
  • Fixed recently closed multiple tabs regression. [Issue: 179697]

New in version 26.0.1410.33 Beta (March 14th, 2013)

  • Updated Flash to 11.6.602.180
  • Fixed Ctrl + X issue in bookmark manager. [Issue: 174613]
  • Fixed 'Your profile cannot be opened' issue on first run. [Issue: 180459]
  • Fixed stability crashes. [Issues: 142931, 178176]
  • Fixed background color for extension badges. [Issue: 177734]
  • Fixed text render issue in Adobe flash. [Issue: 164800]
  • Fixed scroll bar issue in bookmark window. [Issue: 174645]

New in version 25.0.1364.172 (March 13th, 2013)

  • This release contains stability improvements, and a new version of Adobe Flash.

New in version 25.0.1364.160 (March 8th, 2013)

  • This release contains security fixes.

New in version 26.0.1410.28 Beta (March 7th, 2013)

  • Updated Flash to new beta version of Flash 11.6.602.177, includes ActionScript Workers feature.
  • Fixed the way apps appear in new tab page. [Issue: 175377]
  • Fixed a crash while clicking "Install to play offline" button. [Issue: 178036]
  • Fixed prerender of a page when a original prerender was cancelled. [Issue: 178755]
  • Fixed an issue where some avatar icons are shown mirrored in tab strip. [Issue: 178397]
  • Fixed ~60% regression in Cookie.TimeLoadDBQueueWait on Mac and Windows. [Issue: 175415]
  • [Windows] Fixed a crash when installing the app launcher (and the first packaged app). [Issue: 178487]
  • [Chrome Frame] Fixed a crash when trying to process a target="_blank" link. [Issue: 178415]
  • Fixed stability crashes [Issues: 167510, 165952, 177659, 177843]

New in version 25.0.1364.152 (March 5th, 2013)

  • [$1000] [176882] High CVE-2013-0902: Use-after-free in frame loader. Credit to Chamal de Silva.
  • [$1000] [176252] High CVE-2013-0903: Use-after-free in browser navigation handling. Credit to “chromium.khalil”.
  • [$2000] [172926] [172331] High CVE-2013-0904: Memory corruption in Web Audio. Credit to Atte Kettunen of OUSPG.
  • [$1000] [168982] High CVE-2013-0905: Use-after-free with SVG animations. Credit to Atte Kettunen of OUSPG.
  • [174895] High CVE-2013-0906: Memory corruption in Indexed DB. Credit to Google Chrome Security Team (Jüri Aedla).
  • [174150] Medium CVE-2013-0907: Race condition in media thread handling. Credit to Andrew Scherkus of the Chromium development community.
  • [174059] Medium CVE-2013-0908: Incorrect handling of bindings for extension processes.
  • [173906] Low CVE-2013-0909: Referer leakage with XSS Auditor. Credit to Egor Homakov.
  • [172573] Medium CVE-2013-0910: Mediate renderer -> browser plug-in loads more strictly. Credit to Google Chrome Security Team (Chris Evans).
  • [172264] High CVE-2013-0911: Possible path traversal in database handling. Credit to Google Chrome Security Team (Jüri Aedla).

New in version 27.0.1425.0 Alpha (March 1st, 2013)

  • Facebook doesn't always render correctly. [Issue: 177520]
  • Cancel string is missing on the button from the uninstall dialog. [Issue: 178464]
  • Mac: After resizing the window, a frameless window can become draggable in the titlebar area [Issue: 159361]

New in version 26.0.1410.19 Beta (March 1st, 2013)

  • Fixed drop down options in the bookmark manager. [Issue: 174562]
  • Don't unpin the normal Chrome shortcut when deleting profile shortcuts. [Issue: 176642]
  • Fixed cloud print dialog issue which stays open after Print or Cancel pressed. [Issue: 176455]
  • Fixed cloud print dialog hang when user prints to virtual driver. [Issue: 170301]
  • Fixed stability crash. [Issue: 176184]
  • Fixed bookmark manager button which does not respond to selection. [Issue: 177392]
  • Fixed the size of scroll bars when using the Windows Classic theme. [Issue: 175335]
  • [Mac] Fixed the issue with omnibox which closes Chrome while typing. [Issue: 175341]
  • [Linux] Fixed audio issue. [Issue: 158478]

New in version 27.0.1423.0 Alpha (February 27th, 2013)

  • This build fixes several known regressions and stability issues.

New in version 26.0.1410.12 Beta (February 27th, 2013)

  • "Ask Google for suggestions" spell checking feature improvements (e.g. grammar and homonym checking)
  • Developer preview of app launcher on Windows
  • Forced compositing mode and threaded compositing on Mac
  • Desktop shortcuts for multiple users (profiles) on Windows
  • Updated UI styling of menus on Windows
  • Asynchronous DNS resolver on Mac and Linux

New in version 25.0.1364.97 (February 22nd, 2013)

  • Improvements in managing and securing your extensions
  • Better support for HTML5 time/date inputs
  • JavaScript Web Speech API support
  • Better WebGL error handling
  • And lots of other features for developers

New in version 26.0.1410.12 Alpha (February 22nd, 2013)

  • Hosted apps in Chrome will always be opened from app launcher. [Issue: 176267]
  • Added modal confirmation dialog to the enterprise profile sign-in flow. [Issue: 171236]
  • Fixed a crash with autofill. [Issue: 175454, 176576]
  • Fixed issues with sign-in. [Issue: 175672, 175819, 175541, 176190]
  • Fixed spurious profile shortcuts created with a system-level install. [Issue: 177047]
  • Fixed the background tab flashing with certain themes. [Issue: 175426]
  • [Mac] Fixed background apps dock menu. [Issue: 175113]
  • [Mac] Fixed the hang when clicking on extensions' permission link. [Issue: 175071]
  • [Linux] Fixed broken command line to create extensions with locale info. [Issue: 176187]
  • [Linux] Fixed crash after clicking through malware warning. [Issue: 173986]

New in version 26.0.1410.10 Alpha (February 20th, 2013)

  • Fixed cookie jar transfer regression. [Issue: 176513]
  • Fixed enable bad language translation detection reports for secure pages. [Issue: 176457]
  • [Linux] Fixed a crash while printing a pdf. [Issue: 175514]
  • Fixed crash while closing tab during tab capture. [Issue: 175275]
  • [Linux] Fixed the panel issue which does not accept keyboard input when it is minimized and expanded. [Issue: 175858]
  • Fixed issue in allowing extension permissions to be viewed from extension settings page. [Issue: 170742]
  • Fixed display of CSS3 transformed area which doesn't line up with hit-testing area. [Issue: 157961]
  • Fixed scroll bar and combo box UI issue. [Issue: 175335]
  • Fixed alternate NTP which overlap dev tools with bookmark bar. [Issue: 173205]

New in version 26.0.1410.5 Alpha (February 15th, 2013)

  • This build contains an instability fix in the WebCore (Issue: 175307) and the network: (Issue: 174720) components.

New in version 25.0.1364.84 Beta (February 14th, 2013)

  • This build contains improvements in stability and performance.

New in version 26.0.1410.3 Alpha (February 13th, 2013)

  • Display an info banner on the clear browsing data dialog if the browsing data was cleared within the last 24h (Issue: 164600)
  • Added possibility to history to group domains by week or month (Issue:170690)
  • Added wallpaper picker icon (Issue:168913)
  • Made wallpaper images immutable (Issue:173724)

New in version 24.0.1312.70 (February 13th, 2013)

  • This release contains an update to Flash (11.6.602.167). This Flash update has been pushed to Windows, Mac, and Chrome Frame platforms through component updater.

New in version 25.0.1364.68 Beta (February 6th, 2013)

  • This build contains improvements in stability and performance.

New in version 26.0.1403.0 Alpha (February 5th, 2013)

  • Introduced a different variable icon for VPN (Issue: 172317)
  • Enabled showing Google now notifications in Chrome (Issue: 164227)
  • Implemented drag URL onto Home Button to set homepage (Issue: 152210)
  • Enabled speech bubble for platform apps (Issue: 164382)
  • Added UI to printing selection with print preview (Issue: 83098)
  • Added backup URL support for safe browsing data requests (Issue: 155753)
  • Added support for Chrome's identity API (Issue: 134213)
  • Enabled showing a modal dialog (instead of a bubble) for one-click sign in confirmation window (Issue: 171330)
  • Added search token to omnibox in Mac (Issue: 163190)
  • Changed the gray omnibox suggest color to black (Issue: 172142)
  • Fixed a crash in the DXVA decoder in Chrome (Issue: 171673)
  • Fixed the hierarchy arrow for nested bookmark folders for Mac (Issue: 111101)
  • Fixed showing of the profile picture in the uber tray when user clicks (Issue: 140961)
  • Fixed bug causing tab favicon media indicator to not turn off (Issue: 171077)
  • Fixed unintended first item selection when focusing using mouse (Issue: 172283)
  • Hided action box while typing in an omnibox (Issue: 157232)
  • Hided new Autofill UI when the user moves the window (Issue: 171673)
  • Reverted the appearance of simple notifications (Issue: 172358)
  • Disabled the "Open All in Incognito window" in Context menu for invalid urls (Issue: 106609)

New in version 26.0.1397.2 Alpha (January 31st, 2013)

  • Media Gallery: Removed extension gallery watch count details (Issue: 144491)
  • Media Gallery: Added support for mtp device media file system on Windows (Issue: 151679)
  • Alternate ntp: implemented right-aligned search token (Issue: 163190)
  • Alternate ntp: unpinned bookmark bar in ntp (Issue: 170417)
  • Filemanager uses a smart link to the Files App help page (Issue: 139445, 170291)
  • FIx for Gracefully handling the situation of duplicate public accounts (Issue: 170538)
  • Added incoming intent page transition modifier for Android (Issue: 143118)
  • Added a mechanism to set the default handler for a URL protocol on Windows 8 (Issue: 154081)
  • Made easier to move corners of box when cropping large image in Files.app's photo editor.(Issue: 155705)
  • Fixed showing auto-enrollment-cancellation confirmation dialog (Issue: 170230)
  • Ensured that ChromeVox highlight moves out of a11y popup when it is closed (Issue: 165223)
  • Added 'dark' versions for the LTE/HSPA/GPRS icons so that we show them correctly on the network list (Issue: 169969)
  • Split Date/Time picker values from IME processing (Issue: 143540)
  • Removed the Instant checks for web contents modal dialog (Issue: 157161)
  • Brought back the file dialogs for chrome AURA (Issue: 170483)
  • Fixes for Cellular indicators (Issue: 168935, 169979)
  • Removed the NaCl SRPC proxy from Chrome (Issue: 169152)
  • Updated Task Manager looks closer to the new dialog style (Issue: 166075)
  • Fix to activate the last used profile (Issue: 150856)
  • Fixed crash when popping up speech input bubble in CF (Issue: 156688)
  • Fixed views implementation of table and tree to use the right system colors (Issue: 170368, 170370)
  • Filled unexpected gap in a IME candidate window (Issue: 149185)
  • NaCl SDK: Built a naclports bundle (linux only) ( Issue: 168693)
  • Pop up requestAutocomplete UI when autofill server hints chrome client that it is in a multipage autofill flow (Issue: 159830)
  • Implemented new Task Manager and Edit Bookmark style, etc (Issue: 166075)
  • Implemented support of InputScope for desktop (non-Metro) Chrome (Issue: 150077)

New in version 25.0.1364.58 Beta (January 31st, 2013)

  • [171725] Windows controls have red overlay

New in version 24.0.1312.57 (January 31st, 2013)

  • Mac: r177690 Fix renderer crashes when using certain IMEs. (Issue 152566)
  • Mac: r178517 Fix microphone input dropout with Pepper Flash. (Issue 168859)
  • Chrome Frame: r178591 Fix renderer exiting in certain cases when opening a new Window from Chrome Frame. (Issue 171877)

New in version 25.0.1364.45 Beta (January 24th, 2013)

  • This build contains improvements in stability and fixes for few other issues.

New in version 24.0.1312.56 (January 23rd, 2013)

  • Fixed performance of mouse wheel scrolling. [Issue: 160122]
  • Fixed visited links regression. [Issue: 160025]
  • Fixed windows installation when installed as admin. [Issue: 166473]

New in version 26.0.1386.0 Alpha (January 18th, 2013)

  • Fixed marking notifications when opened and closed (Issue: 169388)
  • Fixed web popup menus (Issue: 166832)
  • Fixed renderer form_autofill_util changes to support Checkboxes and Radiobuttons (Issue: 157636)
  • Fixed decoding of URL in bookmark editor (Issue: 165648)
  • Added the preferences and UI to make the launcher opt-inable (Issue: 151676)
  • Added incognito visualization to items in the new app menu (Issue: 169842)
  • Renamed the magnifier names: "Full" -> "Entire screen", "Partial" -> "Lens" (Issue: 166832)
  • Enable webkit preference for Chromium to disallow unsafe plugin pasting (Issue: 112325)
  • Fixed thumbnail view on Drive (Issue 170022)
  • Fixed crash bug in BookmarkEditorView (Issue 167385)

New in version 25.0.1364.36 Beta (January 17th, 2013)

  • This build contains improvements in stability and fixes for few other issues.

New in version 26.0.1384.2 Alpha (January 16th, 2013)

  • This build contains improvements in stability and fixes for few other issues.

New in version 25.0.1364.29 Beta (January 15th, 2013)

  • Improvements in managing and securing your extensions
  • Continued testing of search and the new tab page
  • Better support for HTML5 time/date inputs
  • Javascript speech API support
  • Better WebGL error handling
  • And lots of other features for developers

New in version 25.0.1364.29 Alpha (January 11th, 2013)

  • This update contains additional stability fixes.

New in version 24.0.1312.52 (January 10th, 2013)

  • This is the first Stable release with support for MathML, thanks to WebKit volunteer Dave Barton. This release also contains an update to Flash (11.5.31.137) as well as improvements in speed and stability.

New in version 25.0.1364.26 Alpha (January 8th, 2013)

  • This update contains additional stability fixes.

New in version 25.0.1364.5 Alpha (December 21st, 2012)

  • This update contains stability and memory fixes.

New in version 24.0.1312.45 Beta (December 20th, 2012)

  • This build contains stability fixes.

New in version 25.0.1364.2 Alpha (December 19th, 2012)

  • This update contains additional stability fixes.

New in version 25.0.1359.3 Alpha (December 14th, 2012)

  • This update contains a number of stability fixes.

New in version 24.0.1312.40 Beta (December 13th, 2012)

  • This build contains stability fixes.

New in version 23.0.1271.97 (December 11th, 2012)

  • Some texts in a Website Settings popup are trimmed
  • Linux: selection renders white text on white bg in apps
  • some plugins stopped working
  • Fixed a known crash

New in version 25.0.1354.0 Alpha (December 11th, 2012)

  • This build includes a test of new variations of the New Tab Page for a small set of users.

New in version 24.0.1312.36 Beta (December 7th, 2012)

  • This build contains fixes for stability.

New in version 24.0.1312.32 Beta (December 5th, 2012)

  • Fixed crashes like 161858, 158747, 156878
  • Fixed graphical corruption in Dust. [Issue: 155258]
  • Fixed print preview in Windows 8 mode. [Issue: 159902]
  • Fixed scrolling issue. [Issue: 163553]

New in version 24.0.1312.27 Beta (November 30th, 2012)

  • Fixed random Chinese/Japanese characters that are missing in documents printed via the system print dialog on Windows XP SP3. [Issue: 128506]
  • Fixed memory leak in GPU accelerated canvas. [Issue: 160411]
  • Fixed console.log which doesn’t output jQuery objects properly. [Issue: 162570]
  • Fixed stability issues like 161854, 154483, 154462, 153376.

New in version 23.0.1271.95 (November 30th, 2012)

  • High CVE-2012-5138: Incorrect file path handling. Credit to Google Chrome Security Team (Jüri Aedla).
  • High CVE-2012-5137: Use-after-free in media source handling. Credit to Pinkie Pie.

New in version 24.0.1312.25 Beta (November 28th, 2012)

  • Fixed garbled header and footer text in print preview. [Issue: 152893]
  • Fixed extension action badges with long text. [Issue: 160069]
  • Disable find if constrained window is shown. [Issue: 156969]
  • Enable fullscreen for apps windows. [Issue: 161246]
  • Fixed broken profile with system-wide installation and UserDataDir & DiskCacheDir policy. [Issue: 161336]
  • Fixed stability crashes like 158747, 159437, 149139, 160914, 160401.

New in version 23.0.1271.91 (November 27th, 2012)

  • No audio from Flash content when speaker configuration is set to Quadraphonic (Issue: 159924)
  • Aw, Snap renderer crash on Windows Server 2003 (Issue: 160559)

New in version 24.0.1312.14 Beta (November 15th, 2012)

  • [Linux] {gtk} Fixed selection renders white text on white background in apps. (Issue: 158422)
  • [Linux] Fixed translate infobar button to show selected language. (Issue: 155350)
  • [Linux] Fixed broken Arabic language. (Issue: 158978)
  • Fixed pre-rendering if the preference is disabled at start up. (Issue: 159393)
  • Fixed JavaScript rendering issue. (Issue: 159655)

New in version 24.0.1312.5 Beta (November 8th, 2012)

  • This build contains a slew of awesome developer features.

New in version 23.0.1271.64 (November 7th, 2012)

  • [Mac OS only] [$1000] [149904] High CVE-2012-5115: Defend against wild writes in buggy graphics drivers. Credit to miaubiz.
  • [$3500] [157079] Medium CVE-2012-5127: Integer overflow leading to out-of-bounds read in WebP handling. Credit to Phil Turnbull.
  • [Linux 64-bit only] [$1500] [150729] Medium CVE-2012-5120: Out-of-bounds array access in v8. Credit to Atte Kettunen of OUSPG.
  • [$1000] [143761] High CVE-2012-5116: Use-after-free in SVG filter handling. Credit to miaubiz.
  • [Mac OS only] [$1000] [149717] High CVE-2012-5118: Integer bounds check issue in GPU command buffers. Credit to miaubiz.
  • [$1000] [154055] High CVE-2012-5121: Use-after-free in video layout. Credit to Atte Kettunen of OUSPG.
  • [145915] Low CVE-2012-5117: Inappropriate load of SVG subresource in img context. Credit to Felix Gröbert of the Google Security Team.
  • [149759] Medium CVE-2012-5119: Race condition in Pepper buffer handling. Credit to Fermin Serna of the Google Security Team.
  • [154465] Medium CVE-2012-5122: Bad cast in input handling. Credit to Google Chrome Security Team (Inferno).
  • [154590] [156826] Medium CVE-2012-5123: Out-of-bounds reads in Skia. Credit to Google Chrome Security Team (Inferno).
  • [155323] High CVE-2012-5124: Memory corruption in texture handling. Credit to Al Patrick of the Chromium development community.
  • [156051] Medium CVE-2012-5125: Use-after-free in extension tab handling. Credit to Alexander Potapenko of the Chromium development community.
  • [156366] Medium CVE-2012-5126: Use-after-free in plug-in placeholder handling. Credit to Google Chrome Security Team (Inferno).
  • [157124] High CVE-2012-5128: Bad write in v8. Credit to Google Chrome Security Team (Cris Neckar).

New in version 24.0.1312.5 Alpha (November 7th, 2012)

  • Fixed BrowserFrameWin artifact on opaque to glass frame changes. (Issue: 156982)
  • Fixed a crash that could occur if the user closed a tab with an uncommitted search navigation. (Issue: 158201)
  • Fixed focus issue which does not change from Omnibox to Find in Page on mouseclick. (Issue: 158562)
  • Flash Mac: Fixed escape to exit fullscreen. (Issue: 155492)
  • Fixed crash when installing an extension and the browser window goes away. (Issue: 134194)
  • Ensure sidebar links are re-enabled when a confirmation dialog is closed. (Issue: 158912)
  • Fixed old Chrome version cleanup. (Issue: 75951)
  • Fixed memory leak in Chrome Windows. (Issue: 158931)
  • Fixed F4 inside should not open calendar picker. (Issue: 158482)
  • Fixed calendar picker can flicker when opened from the suggestion picker. (Issue 158608)

New in version 24.0.1312.2 Alpha (November 2nd, 2012)

  • Fixed getUserMedia video-only requests which should not fail if no audio input device is present. (Issue: 144421)
  • Fixed infobar prompt for Windows 8. (Issue: 158419)
  • Fixed drag and drop to install extensions. (Issue: 158499)
  • Fixed NaCl games for Windows 8. (Issue: 153368)
  • Fixed few stability issues 134175, 158745, 155653, 158377, 158660, 158703, 158176.

New in version 23.0.1271.60 Beta (November 1st, 2012)

  • Updated V8 - 3.13.7.5
  • Fixed Flash Camera and Microphone doesn't work (Issue: 155524)
  • Fixed Find-in-Page doesn't work properly (Issue: 156919)
  • Fixed several known top crashes

New in version 24.0.1312.1 Alpha (October 31st, 2012)

  • All:
  • Updated WebKit - 537.17
  • Fixed bugs related to bookmark sync and stability issues like 157365, 155871
  • Linux:
  • Fixed GPU process crash on startup if stderr cannot be closed (Issue: 152530)

New in version 23.0.1271.52 Beta (October 25th, 2012)

  • Fixed geolocation (Issue: 152428)
  • Fixed sync to use all datatypes when user chooses default (Issue: 154940)
  • Pepper Flash not setting local timezone (Issue: 154060)

New in version 24.0.1305.3 Alpha (October 25th, 2012)

  • Updated V8 - 3.14.5.0
  • Bookmarks are now searched by their title while typing into the omnibox with matching bookmarks being shown in the autocomplete suggestions pop-down list. Matching is done by prefix. Example: if there is a bookmark with a title of “Doglettes & Catlettes” typing any of the following into the omnibox will likely present the bookmark as a suggestion:: “dog”, “cat”, “cat dog”, “dog cat”, “dogle”, etc. Typing “ogle” or “lettes” will not match.
  • Fixed issues 155871, 154173, 155133.

New in version 23.0.1271.40 Beta (October 18th, 2012)

  • Updated V8 - 3.13.7.4
  • Fixed web spell check (Issue: 144863)

New in version 24.0.1297.0 Alpha (October 17th, 2012)

  • Updated V8 - 3.14.4.1
  • Updated WebKit - 537.16
  • Fixed tab character in text field when pressed Tab in a tag. (Issue: 149859)
  • Fixed omnibox suggestion: restore selection on WM_IME_ENDCOMPOSITION (Issue: 154379)
  • Fixed text that goes out of the box under Related section after an app was installed. (Issue: 154797)
  • Fixed Web Store icon (Issue: 149887)

New in version 23.0.1271.22 Beta (October 11th, 2012)

  • This build fixes a known top crash.

New in version 24.0.1290.1 Alpha (October 10th, 2012)

  • Fixed issue where clearing browse data never completes with PPAPI flash plugin disabled. [Issue: 144874]
  • Fixed issue in disabling sync for default apps. [Issue: 152582]
  • Fixed crashes 154167, 153902, 152622.

New in version 23.0.1271.22 Beta (October 9th, 2012)

  • This build fixes some of the known stability issues and some bugs related to Windows8, Panels, and GPU.
  • This build also has a new version of Flash with security and other fixes.

New in version 22.0.1229.92 (October 9th, 2012)

  • [138208] High CVE-2012-2900: Crash in Skia text rendering. Credit to Atte Kettunen of OUSPG.
  • [147499] Critical CVE-2012-5108: Race condition in audio device handling. Credit to Atte Kettunen of OUSPG.
  • [148692] Medium CVE-2012-5109: OOB read in ICU regex. Credit to Arthur Gerkis.
  • [151449] Medium CVE-2012-5110: Out-of-bounds read in compositor. Credit to Google Chrome Security Team (Inferno).
  • [151895] Low CVE-2012-5111: Plug-in crash monitoring was missing for Pepper plug-ins. Credit to Google Chrome Security Team (Chris Evans).

New in version 23.0.1271.17 Beta (October 5th, 2012)

  • This build fixes some of the known stability issues.

New in version 23.0.1271.10 Beta (October 3rd, 2012)

  • Chrome 23 contains some really great improvements including better communication and media experiences.

New in version 24.0.1284.2 Alpha (October 3rd, 2012)

  • Updated V8 - 3.13.7.1
  • Updated WebKit - 537.13
  • Fixed an issue where clearing browsing data would not complete when Pepper Flash was disabled (Issue: 144874)
  • Fixed an issue where inline disposition isn’t displaying correctly. (Issue: 145622)
  • Fixed a crash when clicking speech input. (Issue: 146689)
  • Fixed file system URLs no longer work in platform apps. (Issue: 150861)
  • Fixed a crash when opening YouTube in full screen mode. (Issue: 149821)
  • Fixed a crash when loading explicit intent service. (Issue: 150834)

New in version 23.0.1271.6 Alpha (September 26th, 2012)

  • Updated V8 - 3.13.7.2
  • Several fixes to forced compositing mode (Issues: 150881, 157920)
  • Fixed known crashers (Issue: 146689, and several audio ones.)
  • Fixed WebRTC audio (Issue: 150570)

New in version 22.0.1229.79 (September 26th, 2012)

  • Today’s Chrome Stable release advances this effort with the inclusion of the Pointer Lock JavaScript API (often called Mouse Lock). Now, 3D applications such as first-person games can allow users to control their perspective naturally with the mouse, without moving outside the window or bumping into the edge of their screen. Try it out for yourself in this 3D, first-person shooter demo created by our friends at Mozilla.
  • While games are fun, these capabilities also empower other types of applications such as medical and scientific visualization, training, simulation, modeling, authoring packages, and more. We're excited to see recent web platform technologies such as WebGL, Web Audio, Fullscreen, WebSockets, Gamepad, and Pointer Lock combine to be greater than the sum of their parts. Game developers have an excellent platform on which they can deploy rich games with all the benefits of the instant-on, auto-updating, linkable, shareable, and searchable web.
  • As always, Chrome will automatically update itself to include these latest enhancements.

New in version 23.0.1271.1 Alpha (September 21st, 2012)

  • Updated WebKit - 537.11
  • Fixed simultaneous audio playback is broken (Issue: 150003)
  • Fixed bug with Web Intents and non-sticky defaults (Issue: 148740)
  • Audio may drop out under certain play / pause cycles. (Issue: 150702)

New in version 23.0.1270.0 Alpha (September 19th, 2012)

  • Updated V8 - 3.13.7.1
  • Fixed playback of multiple audio streams with Pepper Flash, WebRTC, and WebAudio.
  • Fixed crash when attempting to play audio without a sound card or via remote desktop.
  • Media Galleries Extension API should work on all platforms, though permission format has changed.
  • Chrome will automatically check for captive portals when showing SSL interstitials or when an HTTP server responds to an HTTPS request.

New in version 23.0.1262.0 Alpha (September 11th, 2012)

  • All:
  • Updated V8 - 3.13.6.0
  • Updated WebKit - 537.10
  • Fix top crashes (Issue: 142388, 146606)
  • Mac:
  • Make the favicons for chrome:// URLs high DPI (Issue: 145228)
  • Linux:
  • Make the new sandbox more robust when denying socket calls.

New in version 23.0.1255.0 Alpha (September 5th, 2012)

  • Fixed a crash which occurred when scavenging sessionStorages. (Issue: 145068)
  • Packaged Apps can now request access to local media folders.

New in version 21.0.1180.89 (August 31st, 2012)

  • Several Pepper Flash fixes (Issue 140577, 144107, 140498, 142479).
  • Microphone issues with tinychat.com (Issue: 143192)
  • devtools regression with "save as" of edited source (issue: 141180)
  • mini ninjas shaders fails (Issue: 142705)
  • page randomly turns red/green gradient boxes (Issue: 110343)

New in version 23.0.1246.0 Alpha (August 28th, 2012)

  • Updated V8 - 3.13.3.1
  • Updated WebKit - 537.8
  • Fixed favicons not showing in tab buttons. [Issue: 144253]
  • Fixed cloud-printer being treated as local-printer problem. [Issue: 144048]

New in version 23.0.1243.0 Alpha (August 24th, 2012)

  • Updated V8 - 3.13.1.0
  • Updated WebKit - 537.6
  • SessionStorage is now persisted on disk; it’s stored and restored by the session restore system
  • Linux:
  • Fix GPU rendering failing on Nvidia cards if the kernel supports BPF sandboxing (Issue: 140214).

New in version 22.0.1229.14 Beta (August 23rd, 2012)

  • Mouse Lock API availability for Javascript
  • Additional Windows 8 enhancements
  • Continued polish for users of HiDPI/Retina screens

New in version 21.0.1180.81 (August 22nd, 2012)

  • Duplex Printing defaults to Yes, which prints extra pages even for a 1 page print out (Issue 138312).
  • Print preview takes forever on Win XP (issue: 140044)
  • Anti-DDoS inversion of logic (Issues: 141643, 141081)
  • Pepper Flash: in file uploads, treats HTTP status != 200 as failure, breaking (e.g.) uploads to Amazon S3 (Issue: 140468)
  • Projectmanager.com application causes Flash to hang (Issue: 141018)
  • Turn off TLS 1.1 in Chrome 21 Stable (Issue: 142172)
  • Setting and unsetting display:none obliterates current scroll position (issue: 140101)

New in version 21.0.1180.81 Beta (August 18th, 2012)

  • Duplex Printing defaults to Yes, which prints extra pages even for a 1 page print out (Issue 138312).
  • Print preview takes forever on Win XP (issue: 140044)
  • Anti-DDoS inversion of logic (Issues: 141643, 141081)
  • Pepper Flash: in file uploads, treats HTTP status != 200 as failure, breaking (e.g.) uploads to Amazon S3 (Issue: 140468)
  • Projectmanager.com application causes Flash to hang (Issue: 141018)
  • Turn off TLS 1.1 in Chrome 21 Stable (Issue: 142172)
  • An additional scroll bar appears at the right on many sites (issue: 140239)
  • Setting and unsetting display:none obliterates current scroll position (issue: 140101)

New in version 21.0.1180.57 (August 1st, 2012)

  • [Linux only] [125225] Medium CVE-2012-2846: Cross-process interference in renderers. Credit to Google Chrome Security Team (Julien Tinnes).
  • [127522] Low CVE-2012-2847: Missing re-prompt to user upon excessive downloads. Credit to Matt Austin of Aspect Security.
  • [127525] Medium CVE-2012-2848: Overly broad file access granted after drag+drop. Credit to Matt Austin of Aspect Security.
  • [128163] Low CVE-2012-2849: Off-by-one read in GIF decoder. Credit to Atte Kettunen of OUSPG.
  • [130251] [130592] [130611] [131068] [131237] [131252] [131621] [131690] [132860] Medium CVE-2012-2850: Various lower severity issues in the PDF viewer. Credit to Mateusz Jurczyk of Google Security Team, with contributions by Gynvael Coldwind of Google Security Team.
  • [132585] [132694] [132861] High CVE-2012-2851: Integer overflows in PDF viewer. Credit to Mateusz Jurczyk of Google Security Team, with contributions by Gynvael Coldwind of Google Security Team.
  • [134028] High CVE-2012-2852: Use-after-free with bad object linkage in PDF. Credit to Alexey Samsonov of Google.
  • [134101] Medium CVE-2012-2853: webRequest can interfere with the Chrome Web Store. Credit to Trev of Adblock.
  • [134519] Low CVE-2012-2854: Leak of pointer values to WebUI renderers. Credit to Nasko Oskov of the Chromium development community.
  • [134888] High CVE-2012-2855: Use-after-free in PDF viewer. Credit to Mateusz Jurczyk of Google Security Team, with contributions by Gynvael Coldwind of Google Security Team.
  • [134954] [135264] High CVE-2012-2856: Out-of-bounds writes in PDF viewer. Credit to Mateusz Jurczyk of Google Security Team, with contributions by Gynvael Coldwind of Google Security Team.
  • [$1000] [136235] High CVE-2012-2857: Use-after-free in CSS DOM. Credit to Arthur Gerkis.
  • [$1000] [136894] High CVE-2012-2858: Buffer overflow in WebP decoder. Credit to Jüri Aedla.
  • [Linux only] [137541] Critical CVE-2012-2859: Crash in tab handling. Credit to Jeff Roberts of Google Security Team.
  • [137671] Medium CVE-2012-2860: Out-of-bounds access when clicking in date picker. Credit to Chamal de Silva.

New in version 22.0.1221.0 Alpha (July 31st, 2012)

  • This update has an updated version of V8 (3.12.16.0) along with other improvements.

New in version 21.0.1180.57 Beta (July 27th, 2012)

  • Fixed Youtube Drag & Drop Upload Not Working (Issue: 137024)

New in version 21.0.1180.55 Beta (July 26th, 2012)

  • Several crash fixes (Issues: 131310, 134574)
  • Can't press Enter to save to PDF (Issue: 137690)

New in version 22.0.1215.0 Alpha (July 24th, 2012)

  • This build has an update version of V8 (3.12.14.0)

New in version 21.0.1180.49 Beta (July 19th, 2012)

  • Several crash fixes (Issues: 134550, 129446)
  • Fixed Autofill does not work in Incognito mode (Issue: 137100)
  • Fixed Chrome never stops blocking power save features once blocked on KDE (Issue: 137538)
  • Fixed Linux users experiencing slowdown due to accessibility being turned on (Issue: 137537)

New in version 22.0.1207.1 Alpha (July 17th, 2012)

  • Updated V8 - 3.12.11.0
  • New-style packaged apps are enabled by default.

New in version 21.0.1180.41 Beta (July 13th, 2012)

  • Updated V8 - 3.11.10.14
  • Several crash fixes (Issues: 132119, 134263, 134582, 130772, 133108, 134695, 135691, 136413, 133096)
  • Fixed horizontal scrollbar flash on uber page (Issue: 129406)
  • Fixed cloud printers not showing full list (Issue: 134242)
  • Fixed profile editing on uber page (Issue: 132343)
  • Fixed buffered area disappearing while playing video (Issues: 133567, 131444)

New in version 20.0.1132.57 (July 12th, 2012)

  • Along with below mentioned security fixes, this build contains an update to Flash player, v8 (3.10.8.20) and couple of stability/bug fixes.

New in version 22.0.1201.0 Alpha (July 10th, 2012)

  • An update version of V8 (3.12.9.0)

New in version 21.0.1180.15 Beta (July 9th, 2012)

  • Chrome 21 contains some really great improvements including better communication and printing experiences.

New in version 21.0.1180.15 Alpha (June 29th, 2012)

  • This version fixes a small sync problem (Issue: 134715) and contains a fix for Mac hardware with the Intel HD 4000 graphics chip (e.g. the new Macbook Airs), in order to prevent a resource leak which is causing a kernel panic on that hardware. This is a temporary change while we work on fixing the root cause of the issue.

New in version 20.0.1132.43 (June 27th, 2012)

  • [118633] Low CVE-2012-2815: Leak of iframe fragment id. Credit to Elie Bursztein of Google.
  • [Windows only] [119150] [119250] High CVE-2012-2816: Prevent sandboxed processes interfering with each other. Credit to Google Chrome Security Team (Justin Schuh).
  • [$1000] [120222] High CVE-2012-2817: Use-after-free in table section handling. Credit to miaubiz.
  • [$1000] [120944] High CVE-2012-2818: Use-after-free in counter layout. Credit to miaubiz.
  • [120977] High CVE-2012-2819: Crash in texture handling. Credit to Ken “gets” Russell of the Chromium development community.
  • [121926] Medium CVE-2012-2820: Out-of-bounds read in SVG filter handling. Credit to Atte Kettunen of OUSPG.
  • [122925] Medium CVE-2012-2821: Autofill display problem. Credit to “simonbrown60”.
  • [various] Medium CVE-2012-2822: Misc. lower severity OOB read issues in PDF. Credit to awesome ASAN and various Googlers (Kostya Serebryany, Evgeniy Stepanov, Mateusz Jurczyk, Gynvael Coldwind).
  • [$1000] [124356] High CVE-2012-2823: Use-after-free in SVG resource handling. Credit to miaubiz.
  • [$1000] [125374] High CVE-2012-2824: Use-after-free in SVG painting. Credit to miaubiz.
  • [128688] Medium CVE-2012-2826: Out-of-bounds read in texture conversion. Credit to Google Chrome Security Team (Inferno).
  • [Mac only] [129826] Low CVE-2012-2827: Use-after-free in Mac UI. Credit to the Chromium development community (Dharani Govindan).
  • [129857] High CVE-2012-2828: Integer overflows in PDF. Credit to Mateusz Jurczyk of Google Security Team and Google Chrome Security Team (Chris Evans).
  • [$1000] [129947] High CVE-2012-2829: Use-after-free in first-letter handling. Credit to miaubiz.
  • [$1000] [129951] High CVE-2012-2830: Wild pointer in array value setting. Credit to miaubiz.
  • [Windows only] [130276] Low CVE-2012-2764: Unqualified load of metro DLL. Credit to Moshe Zioni of Comsec Consulting.
  • [$1000] [130356] High CVE-2012-2831: Use-after-free in SVG reference handling. Credit to miaubiz.
  • [131553] High CVE-2012-2832: Uninitialized pointer in PDF image codec. Credit to Mateusz Jurczyk of Google Security Team.
  • [132156] High CVE-2012-2833: Buffer overflow in PDF JS API. Credit to Mateusz Jurczyk of Google Security Team.
  • [$1000] [132779] High CVE-2012-2834: Integer overflow in Matroska container. Credit to Jüri Aedla.

New in version 21.0.1180.11 Alpha (June 26th, 2012)

  • Updated V8 - 3.11.10.12
  • Several crash fixes (Issues: 129884, 133692)

New in version 20.0.1132.43 Beta (June 25th, 2012)

  • This build contains stability fixes.

New in version 20.0.1132.42 Beta (June 23rd, 2012)

  • This build contains a fix for GPU out of memory issue.

New in version 20.0.1132.39 Beta (June 21st, 2012)

  • This build contains only updates to v8 (3.10.8.18) and fixes for bugs and stability.

New in version 21.0.1180.0 Alpha (June 20th, 2012)

  • Updated V8 - 3.11.10.6
  • Content settings for Cookies now also show protected storage granted to hosted apps
  • Chromoting client plugin correctly up-scales on when page-zoom is >100%.

New in version 20.0.1132.34 Beta (June 14th, 2012)

  • This build contains updates to v8 (3.10.8.16) and fixes for bugs and stability.

New in version 21.0.1171.0 Alpha (June 12th, 2012)

  • HTML5 audio/video and WebAudio now support 24-bit PCM wave files.

New in version 19.0.1084.56 (June 9th, 2012)

  • This build contains a new version of Flash Player (11.3), in addition to some minor stability fixes.

New in version 20.0.1132.27 Beta (June 7th, 2012)

  • This build contains updates to v8 (3.10.8.13) and fixes for bugs and stability.

New in version 21.0.1163.0 Alpha (June 5th, 2012)

  • Updated V8 - 3.11.8.0

New in version 20.0.1132.21 Beta (May 31st, 2012)

  • This build contains updates to v8 (3.10.8.11) and fixes for bugs and stability.

New in version 21.0.1155.2 Alpha (May 30th, 2012)

  • Updated V8 - 3.11.6.2
  • Gamepad API prototype http://www.w3.org/TR/gamepad/ available by default.
  • TLS 1.1 is enabled by default.
  • Mouse Lock (Pointer Lock) no longer requires fullscreen. [r138150][r138944] Native Client applications can use this now, while the JavaScript API still requires enabling in about:flags. Try e.g. http://media.tojicode.com/q3bsp/

New in version 19.0.1084.52 (May 24th, 2012)

  • [117409] High CVE-2011-3103: Crashes in v8 garbage collection. Credit to the Chromium development community (Brett Wilson).
  • [118018] Medium CVE-2011-3104: Out-of-bounds read in Skia. Credit to Google Chrome Security Team (Inferno).
  • [$1000] [120912] High CVE-2011-3105: Use-after-free in first-letter handling. Credit to miaubiz.
  • [122654] Critical CVE-2011-3106: Browser memory corruption with websockets over SSL. Credit to the Chromium development community (Dharani Govindan).
  • [124625] High CVE-2011-3107: Crashes in the plug-in JavaScript bindings. Credit to the Chromium development community (Dharani Govindan).
  • [$1337] [125159] Critical CVE-2011-3108: Use-after-free in browser cache. Credit to “efbiaiinzinz”.
  • [Linux only] [$1000] [126296] High CVE-2011-3109: Bad cast in GTK UI. Credit to Micha Bartholomé.
  • [126337] [126343] [126378] [127349] [127819] [127868] High CVE-2011-3110: Out of bounds writes in PDF. Credit to Mateusz Jurczyk of the Google Security Team, with contributions by Gynvael Coldwind of the Google Security Team.
  • [$500] [126414] Medium CVE-2011-3111: Invalid read in v8. Credit to Christian Holler.
  • [127331] High CVE-2011-3112: Use-after-free with invalid encrypted PDF. Credit to Mateusz Jurczyk of the Google Security Team, with contributions by Gynvael Coldwind of the Google Security Team.
  • [127883] High CVE-2011-3113: Invalid cast with colorspace handling in PDF. Credit to Mateusz Jurczyk of the Google Security Team, with contributions by Gynvael Coldwind of the Google Security Team.
  • [128014] High CVE-2011-3114: Buffer overflows with PDF functions. Credit to Google Chrome Security Team (scarybeasts).
  • [$1000] [128018] High CVE-2011-3115: Type corruption in v8. Credit to Christian Holler.

New in version 21.0.1145.0 Alpha (May 22nd, 2012)

  • Updated V8 - 3.11.3.0
  • Allow certain unused renderer processes to exit before the tab is closed. (Issue: 126333)
  • Fix password autofill to work again for Incognito windows (Issue: 117720)
  • Prevent an infinite loop inside SSLClientSocketNSS::OnSendComplete. This has been observed in Chrome OS, but could also happen on other platforms. (Issue: 127822)

New in version 20.0.1132.11 Alpha (May 18th, 2012)

  • This build contains updates to V8 (3.10.8.7) and several other fixes.

New in version 20.0.1132.8 Alpha (May 16th, 2012)

  • This build contains updates to V8 (3.10.8.5) and several other fixes.

New in version 20.0.1132.3 Alpha (May 12th, 2012)

  • This build contains update for several fixes.

New in version 20.0.1130.1 Alpha (May 9th, 2012)

  • This build contains update for V8 - 3.10.8.4 and several stability fixes.

New in version 20.0.1123.4 Alpha (May 7th, 2012)

  • This build contains fixes for rendering and stability.

New in version 18.0.1025.168 / 19.0.1084.36 Beta / 20.0.1123.1 Alpha (May 2nd, 2012)

  • Updated V8 - 3.10.6.0
  • Fixed about:inducebrowsercrashforrealz (Issue: 124843)
  • [Windows] Visual refinements to the tab strip and toolbar icons, including a slightly wider new tab button (the “baby tab”) that is easier to click.
  • [Known Issues] Mouse over on apps/extensions makes place holder blank in web store. (Issue: 125777)

New in version 18.0.1025.168 (April 30th, 2012)

  • [106413] High CVE-2011-3078: Use after free in floats handling. Credit to Google Chrome Security Team (Marty Barbella) and independent later discovery by miaubiz.
  • [117110] High CVE-2012-1521: Use after free in xml parser. Credit to Google Chrome Security Team (SkyLined) and independent later discovery by wushi of team509 reported through iDefense VCP (V-874rcfpq7z).
  • [117627] Medium CVE-2011-3079: IPC validation failure. Credit to PinkiePie.
  • [121726] Medium CVE-2011-3080: Race condition in sandbox IPC. Credit to Willem Pinckaers of Matasano.
  • [$1000] [121899] High CVE-2011-3081: Use after free in floats handling. Credit to miaubiz.

New in version 20.0.1115.1 Alpha (April 25th, 2012)

  • The build contains few fixes and update to V8 (3.10.5.0).

New in version 20.0.1105.0 Alpha (April 18th, 2012)

  • Updated V8 - 3.10.2.1
  • Fixed issues - 121584, 122130, 122850, 123403
  • Fixed empty apps page crash. (Issue: 122214)

New in version 19.0.1084.9 Alpha (April 4th, 2012)

  • Updated V8 - 3.9.24.7
  • Fixed issues: 120519, 120978, 120430, 120193

New in version 19.0.1084.1 Alpha (March 30th, 2012)

  • Fixed issue cannot add GMail app to Chrome. [Issue: 119975]
  • Fixed theme and bookmarks bar notifications. [Issue: 117027]
  • Fixed popup prompting permission for flash plugin. [Issue: 120358]

New in version 18.0.1025.142 (March 29th, 2012)

  • [$500] [109574] Medium CVE-2011-3058: Bad interaction possibly leading to XSS in EUC-JP. Credit to Masato Kinugawa.
  • [$500] [112317] Medium CVE-2011-3059: Out-of-bounds read in SVG text handling. Credit to Arthur Gerkis.
  • [$500] [114056] Medium CVE-2011-3060: Out-of-bounds read in text fragment handling. Credit to miaubiz.
  • [116398] Medium CVE-2011-3061: SPDY proxy certificate checking error. Credit to Leonidas Kontothanassis of Google.
  • [116524] High CVE-2011-3062: Off-by-one in OpenType Sanitizer. Credit to Mateusz Jurczyk of the Google Security Team.
  • [117417] Low CVE-2011-3063: Validate navigation requests from the renderer more carefully. Credit to kuzzcc, Sergey Glazunov, PinkiePie and scarybeasts (Google Chrome Security Team).
  • [$1000] [117471] High CVE-2011-3064: Use-after-free in SVG clipping. Credit to Atte Kettunen of OUSPG.
  • [$1000] [117588] High CVE-2011-3065: Memory corruption in Skia. Credit to Omair.
  • [$500] [117794] Medium CVE-2011-3057: Invalid read in v8. Credit to Christian Holler.

New in version 19.0.1081.2 Alpha (March 29th, 2012)

  • Updated V8 - 3.9.24.1
  • The Other Devices menu on the new tab page restores the navigation history when a tab is restored.
  • [Windows] Disable file: or data: downloads for security hardening.
  • [Mac] Fixed: Extension and download icons are drawn incorrectly (Issue: 118755)

New in version 18.0.1025.140 Beta (March 27th, 2012)

  • Fixed Font settings aren't saved on quit (Issue: 112706)
  • Fixed IME failure on specific flows with a windowless Flash (Issue: 117758)
  • Fixed Crash when creating a new tab while the previous one is still loading (Issue: 87176)
  • Fixed Drag and Drop issues (Issue: 119700)

New in version 19.0.1077.3 Alpha (March 24th, 2012)

  • Updated V8 - 3.9.23.0
  • Fixed dialog boxes in settings. (Issue: 118031)
  • Fixed flash videos turning white on mac when running with --disable-composited-core-animation-plugins (Issue: 117916)
  • Change to look for correctly sized favicon when multiple images are provided. (Issue: 118275)
  • Fixed issues - 116044, 117470, 117068, 117668, 118620

New in version 17.0.963.83 (March 22nd, 2012)

  • [$1000] [113902] High CVE-2011-3050: Use-after-free with first-letter handling. Credit to miaubiz.
  • [116162] High CVE-2011-3045: libpng integer issue from upstream. Credit to Glenn Randers-Pehrson of the libpng project.
  • [$1000] [116461] High CVE-2011-3051: Use-after-free in CSS cross-fade handling. Credit to Arthur Gerkis.
  • [116637] High CVE-2011-3052: Memory corruption in WebGL canvas handling. Credit to Ben Vanik of Google.
  • [$1000] [116746] High CVE-2011-3053: Use-after-free in block splitting. Credit to miaubiz.
  • [117418] Low CVE-2011-3054: Apply additional isolations to webui privileges. Credit to Sergey Glazunov.
  • [117736] Low CVE-2011-3055: Prompt in the browser native UI for unpacked extension installation. Credit to PinkiePie.
  • [$2000] [117550] High CVE-2011-3056: Cross-origin violation with “magic iframe”. Credit to Sergey Glazunov.
  • [$500] [117794] Medium CVE-2011-3057: Invalid read in v8. Credit to Christian Holler.

New in version 18.0.1025.113 Beta (March 20th, 2012)

  • This release changes to turns of print preview and fixes a few known crashes and memory issues. Please note that print preview will possibly be turned back on in a future release.

New in version 18.0.1025.108 Beta (March 16th, 2012)

  • This release changes to V8 version 3.7 and it contains fixes for a number of stability issues along with other bugs.

New in version 18.0.1025.100 Beta (March 16th, 2012)

  • This release turns prerendering back on and it contains fixes for a number of stability issues along with other bugs.

New in version 19.0.1068.1 Alpha (March 16th, 2012)

  • This build contains a fix for browser hang and increase in CPU usage.

New in version 19.0.1068.0 Alpha (March 14th, 2012)

  • Users of Chrome for Android who have tab sync enabled can use the “Other Devices” menu on the new tab page to open tabs from other devices.
  • Several fixes and improvements in the new Settings, Extensions, and Help pages.
  • Fixed the flashing when switched between composited and non-composited mode. [Issue: 116603]
  • Fixed stability issues 116913, 117217, 117347, 117081

New in version 18.0.1025.56 Beta (March 13th, 2012)

  • GPU acceleration of the Canvas 2D is now disabled by default and can be enabled in about:flags
  • We've disabled the image transport surface on Windows Vista and 7. For gpu accelerated content gpu process now renders directly to the window.
  • Core Animation plugins no longer trigger gpu accelerated compositing on the Mac.

New in version 17.0.963.79 (March 10th, 2012)

  • This release fixes issues with Flash games, along with the security fix listed below.

New in version 18.0.1025.54 Beta (March 9th, 2012)

  • Fixed Chrome install/update resets Google search preferences (Issue: 105390)
  • Don't trigger accelerated compositing on 3D CSS when using swiftshader (Issue: 116401)
  • Fixed a GPU crash (Issue: 116096)
  • More fixes for Back button frequently hangs (Issue: 93427)
  • Bastion now works (Issue: 116285)
  • Fixed Composited layer sorting irregularity with accelerated canvas (Issue: 102943)
  • Fixed Composited layer sorting irregularity with accelerated canvas (Issue: 102943)
  • Fixed Google Feedback causes render process to use too much memory (Issue: 114489)
  • Fixed after upgrade, some pages are rendered as blank (Issue: 109888)
  • Fixed Pasting text into a single-line text field shouldn't keep literal newlines (Issue: 106551)

New in version 17.0.963.78 (March 9th, 2012)

  • This release fixes issues with Flash games and videos, along with the security fix listed below.

New in version 19.0.1061.1 Alpha (March 7th, 2012)

  • Updated V8 - 3.9.13.0
  • Added remote file system support for File object by 'create-snapshot-first' approach (Issue: 115603)
  • Fixed overlap of apps in NTP when deleting and reinstalling app (Issue: 116284)
  • Fixed issues - 116174, 115309, 115858, 108239, 115399, 105054 (ChromeOS-specific)

New in version 17.0.963.66 (March 7th, 2012)

  • This release fixes an issue in the DOM.

New in version 17.0.963.65 (March 5th, 2012)

  • Cursors and backgrounds sometimes do not load (bug 111218)
  • Plugins not loading on some pages (bug 108228)
  • Text paste includes trailing spaces (bug 106551)
  • Websites using touch controls break (bug 110332)

New in version 18.0.1025.45 Beta (March 1st, 2012)

  • Fixed NTP signed in state is missing (Issue: 112676)
  • Fixed gmail seems to redraw itself (all white) occasionally (Issue: 111263)
  • Focus "OK" button on Javascript dialogs (Issue: 111015)
  • Fixed Back button frequently hangs (Issue: 93427)
  • Increase the buffer size to fix muted playback rate (Issue: 108239)
  • Fixed Empty span with line-height renders with non-zero height (Issue: 109811)

New in version 19.0.1055.1 Alpha (February 29th, 2012)

  • This build contains stability fixes and updated V8 to 3.9.11.0.

New in version 19.0.1049.3 Alpha (February 24th, 2012)

  • Updated V8 - 3.9.8.0
  • Marked the Certum Trusted Network CA as an issuer of extended-validation (EV) certificates.
  • Fixed importing of bookmarks, history, etc. from Firefox 10+.
  • Fixed issues - 114001, 110785, 114168, 114598, 111663, 113636, 112676

New in version 18.0.1025.39 Beta (February 22nd, 2012)

  • Updated V8 - 3.8.9.8
  • Fixed several crashes (Issues: 111376, 108688, 114391)
  • Fixed Firefox browser in Import Bookmarks and Settings drop-down (Issue: 114476)
  • Sync: Sessions aren't associating pre-existing tabs (Issue: 113319)
  • Fixed All "Extensions" make an entry under the "NTP Apps" page (Issue: 113672)

New in version 17.0.963.56 (February 16th, 2012)

  • This release fixes a number of stability and security issues in Chrome, and also includes a new version of Flash.

New in version 18.0.1025.33 Beta (February 16th, 2012)

  • Updated V8 - 3.8.9.6
  • Fixed several crashes (Issues: 110943, 110234, 110176, 108986)
  • Sync: Conflicting sync entries should not be committed (Issue: 82236)
  • Back button frequently hangs (Issue: 93427)
  • Fixed Speech input bubble borders don't closing (Issues: 98323, 112194)
  • Improved the quality of the omnibox

New in version 19.0.1041.0 Alpha (February 15th, 2012)

  • Make speech input bubble borders close with the bubble [Issue: 112194]
  • Fixed stability issues [Issues: 113531, 113492, 113654, 113546, 113847, 114011]

New in version 19.0.1036.7 Alpha (February 11th, 2012)

  • Updated V8 - 3.9.4.0
  • Fix: open incognito windows at exit created extra normal windows when the session was restored [r120554]
  • Show spelling suggestions for misspelled words from the online spellchecker provided by Google (only after users opt into sending text to the service) (r120959).
  • When translating a page, get the code and translation via HTTPS. (r120113)

New in version 17.0.963.46 (February 8th, 2012)

  • New Extensions APIs
  • Updated Omnibox Prerendering
  • Download Scanning Protection
  • Many other small changes

New in version 18.0.1025.7 Alpha (February 8th, 2012)

  • Users can now sync NTP icons to their profile and keep their order across different instances of chrome. [Issues: 111277, 100737, 61447]
  • Pointer Lock / Mouse Lock is implemented behind a flag (see about:flags). Mac only bug fix when closing a tab. [Issue: 111860]
  • Fixed stability crashes [Issue: 112590, 112116, 111968, 110909]

New in version 18.0.1025.3 Alpha (February 3rd, 2012)

  • Fixed URL handling of settings page. [Issue: 111900]
  • Fixed crash when unpacking extension. [Issue: 112301]
  • Fixed the case where the utility process crashes after all plugins have been loaded. [Issue: 111935]

New in version 18.0.1025.1 Alpha (February 1st, 2012)

  • Updated V8 - 3.8.9.0
  • Moved the ‘privacy’ extension API out of experimental (Issue: 88030)

New in version 17.0.963.46 Beta (January 31st, 2012)

  • This update fixes a number of stability and UI issues.

New in version 17.0.963.44 Beta (January 26th, 2012)

  • This update fixes a number of stability and UI issues.

New in version 18.0.1017.2 Alpha (January 25th, 2012)

  • Updated V8 - 3.8.7.1
  • Enable linear scaling for Chrome Remote Desktop’s scale-to-fit feature. (issue 93451)
  • Fixed popup windows issue (Issue: 106967)
  • Fixed crashes in extension binding (Issue: 110694)
  • When Strict Transport Security mandates that HTTPS certificate errors must be fatal, add a string telling the user why. (Issue: 110191)

New in version 16.0.912.77 (January 24th, 2012)

  • [$1000] [106484] High CVE-2011-3924: Use-after-free in DOM selections. Credit to Arthur Gerkis.
  • [$3133.7] [107182] Critical CVE-2011-3925: Use-after-free in Safe Browsing navigation. Credit to Chamal de Silva. *
  • [108461] High CVE-2011-3928: Use-after-free in DOM handling. Credit to wushi of team509 reported through ZDI (ZDI-CAN-1415).
  • [$1000] [108605] High CVE-2011-3927: Uninitialized value in Skia. Credit to miaubiz.
  • [$1000] [109556] High CVE-2011-3926: Heap-buffer-overflow in tree builder. Credit to Arthur Gerkis.

New in version 17.0.963.38 Beta (January 19th, 2012)

  • This update fixes a number of stability and UI issues.

New in version 18.0.1010.1 Alpha (January 18th, 2012)

  • The PDF plugin now adds ‘Rotate Clockwise’ and ‘Rotate Counterclockwise’ commands to context menus, so users can more easily view documents scanned horizontally.
  • Updated the first-run bubble text and added a link to change the current search engine. (Issue: 117521)
  • Fixed HTML5 showing download bar in fullscreen mode. (Issue: 99673)

New in version 17.0.963.33 Beta (January 12th, 2012)

  • This update fixes a number of stability and UI issues.

New in version 18.0.1003.1 Alpha (January 11th, 2012)

  • Updated V8 - 3.8.4.1
  • Fixed several crashes (Issues 106869, 104046, 106989, 107574, 106891, 108687, 107171, 109002)
  • When a profile is synced, use GAIA name + GAIA photo for avatar - Use Google OAuth userinfo API to get profile information (Issue: 91241)
  • Added support for manifest_version attribute for extensions (Issue: 62897)
  • Eliminate drawing glitch on WebUI radio controls. (Issue: 105755)
  • Fixed regression with extension omnibox API where whitespace would get trimmed (Issue: 106355)
  • Fix page zoom for plug-in documents (Issues: 106013, 106228)
  • Fix race condition in extension service that causes extensions installed (Issue: 101935)
  • Folders in the wrench menu and application menu are greyed out (Issue: 109196)
  • Better error handling in audio wave out. (Issue: 108685)
  • Made URL filter for web request API mandatory (Issue: 106590)
  • Reject weak RSA and DSA keys when validating certificate chains for HTTPS; related UI (r114879, r116442, r115924)
  • Linux:
  • Native Client applications should now work on Linux systems where /dev/shm is mounted with the “noexec” option, such as Gentoo (r113228).
  • Fixed issue where Google Chrome does not start on RHEL 6 and derivative Linux distributions. (r116534)

New in version 17.0.963.26 Beta (January 6th, 2012)

  • New Extensions APIs
  • Updated Omnibox Prerendering
  • Download Scanning Protection
  • Many other small changes

New in version 16.0.912.75 (January 6th, 2012)

  • [$1000] [106672] High CVE-2011-3921: Use-after-free in animation frames. Credit to Boris Zbarsky of Mozilla.
  • [$1000] [107128] High CVE-2011-3919: Heap-buffer-overflow in libxml. Credit to Jüri Aedla.
  • [108006] High CVE-2011-3922: Stack-buffer-overflow in glyph handling. Credit to Google Chrome Security Team (Cris Neckar).

New in version 17.0.963.26 Alpha (January 5th, 2012)

  • Updated V8 - 3.7.12.12
  • Make webstore installs work when the Downloads folder is missing. (Issue: 108812)

New in version 17.0.963.12 Alpha (December 16th, 2011)

  • This release contains stability and feature improvements.

New in version 16.0.912.63 (December 13th, 2011)

  • Chrome 16 contains some really great improvements including enhancements to Sync and the ability to create multiple profiles on a single instance of Chrome.
  • Bugs fixed:
  • [81753] Medium CVE-2011-3903: Out-of-bounds read in regex matching. Credit to David Holloway of the Chromium development community.
  • [95465] Low CVE-2011-3905: Out-of-bounds reads in libxml. Credit to Google Chrome Security Team (Inferno).
  • [$500] [98809] Medium CVE-2011-3906: Out-of-bounds read in PDF parser. Credit to Aki Helin of OUSPG.
  • [$1000] [99016] High CVE-2011-3907: URL bar spoofing with view-source. Credit to Mitja Kolsek of ACROS Security.
  • [100863] Low CVE-2011-3908: Out-of-bounds read in SVG parsing. Credit to Aki Helin of OUSPG.
  • [101010] Medium CVE-2011-3909: [64-bit only] Memory corruption in CSS property array. Credit to Google Chrome Security Team (scarybeasts) and Chu.
  • [101494] Medium CVE-2011-3910: Out-of-bounds read in YUV video frame handling. Credit to Google Chrome Security Team (Cris Neckar).
  • [101779] Medium CVE-2011-3911: Out-of-bounds read in PDF. Credit to Google Chrome Security Team (scarybeasts) and Robert Swiecki of the Google Security Team.
  • [$1000] [102359] High CVE-2011-3912: Use-after-free in SVG filters. Credit to Arthur Gerkis.
  • [$1000] [103921] High CVE-2011-3913: Use-after-free in Range handling. Credit to Arthur Gerkis.
  • [$1000] [104011] High CVE-2011-3914: Out-of-bounds write in v8 i18n handling. Credit to Sławomir Błażek.
  • [$1000] [104529] High CVE-2011-3915: Buffer overflow in PDF font handling. Credit to Atte Kettunen of OUSPG.
  • [$500] [104959] Medium CVE-2011-3916: Out-of-bounds reads in PDF cross references. Credit to Atte Kettunen of OUSPG.
  • [105162] Medium CVE-2011-3917: Stack-buffer-overflow in FileWatcher. Credit to Google Chrome Security Team (Marty Barbella).
  • [107258] High CVE-2011-3904: Use-after-free in bidi handling. Credit to Google Chrome Security Team (Inferno) and miaubiz.

New in version 17.0.963.2 Alpha (December 9th, 2011)

  • This release contains stability and feature improvement.

New in version 17.0.963.0 Alpha (December 7th, 2011)

  • Updated V8 - 3.7.12.6
  • r113121 Omnibox suggestions will now be prerendered if our confidence of the user following the suggestion is high.
  • Support for
  • Content Settings (in Options, Under the Hood) now has UI for “Mouse Cursor”, which controls the Mouse Lock API permissions.
  • r110556 Fixed a renderer crash that could happen when opening a new tab with many tabs open.
  • WebKit Issue 73056 - Small fix for BiDi selection.
  • WebKit Issue 63903 - Fixed WebKit's implementation of bdo, bdi, and output elements to match HTML5 spec section 10.3.5.

New in version 17.0.942.0 Alpha (November 18th, 2011)

  • Updated V8 - 3.7.7.0.
  • Fixed New Tab page apps re-ordering issue.
  • Policy support for disabling the Cloud Print Connector has been added.

New in version 15.0.874.121 (November 17th, 2011)

  • Updated V8 - 3.5.10.24
  • This build contains the fix to a regression: SVG in iframe doesn't use specified dimensions (Issue: 98951)

New in version 17.0.938.0 Alpha (November 15th, 2011)

  • Updated V8 - 3.7.6.0. This release includes the new garbage collector.

New in version 15.0.874.120 (November 11th, 2011)

  • Updated V8 - 3.5.10.23
  • Fix small print sizing issues (issues: 102186, 82472, 102154)
  • This new build also contains a new version of Flash which contains security fixes. (Release Notes)

New in version 17.0.932.0 Alpha (November 8th, 2011)

  • Fixed possible hang when using the GPU (Issue: 102214).

New in version 17.0.928.0 Alpha (November 4th, 2011)

  • All:
  • Updated V8 - 3.6.6.3
  • Prompt the user if they want to cancel downloads occurring when the last Incognito Window of a profile is closed.
  • Panels are enabled by default (extensions-only, “Tasky” in Web Store is one example)
  • Adjustable margins supported in Print Preview.
  • Mouse Lock “Allow” permission (given via a prompt) is now saved in content settings per domain.
  • Linux:
  • Fix the multi-profile selection bubble when using a chrome-theme [r107495]
  • Optimization work to make the GTK+ tabstrip do less redundant painting. Please report any regressions, especially with complex themes. [Issue: 100803]

New in version 16.0.912.21 Alpha (November 2nd, 2011)

  • This release contains stability fixes.

New in version 16.0.912.15 Alpha (October 28th, 2011)

  • This release contains fixes for stability.

New in version 15.0.874.106 (October 27th, 2011)

  • This release fixes login issues to Barrons Online and The Wall Street Journal (Issue 101274).

New in version 15.0.874.102 (October 26th, 2011)

  • [$500] [86758] High CVE-2011-2845: URL bar spoof in history handling. Credit to Jordi Chancel.
  • [88949] Medium CVE-2011-3875: URL bar spoof with drag+drop of URLs. Credit to Jordi Chancel.
  • [90217] Low CVE-2011-3876: Avoid stripping whitespace at the end of download filenames. Credit to Marc Novak.
  • [91218] Low CVE-2011-3877: XSS in appcache internals page. Credit to Google Chrome Security Team (Tom Sepez) plus independent discovery by Juho Nurminen.
  • [94487] Medium CVE-2011-3878: Race condition in worker process initialization. Credit to miaubiz.
  • [95374] Low CVE-2011-3879: Avoid redirect to chrome scheme URIs. Credit to Masato Kinugawa.
  • [95992] Low CVE-2011-3880: Don’t permit as a HTTP header delimiter. Credit to Vladimir Vorontsov, ONsec company.
  • [$12174] [96047] [96885] [98053] [99512] [99750] High CVE-2011-3881: Cross-origin policy violations. Credit to Sergey Glazunov.
  • [96292] High CVE-2011-3882: Use-after-free in media buffer handling. Credit to Google Chrome Security Team (Inferno).
  • [$1000] [96902] High CVE-2011-3883: Use-after-free in counter handling. Credit to miaubiz.
  • [97148] High CVE-2011-3884: Timing issues in DOM traversal. Credit to Brian Ryner of the Chromium development community.
  • [$6337] [97599] [98064] [98556] [99294] [99880] [100059] High CVE-2011-3885: Stale style bugs leading to use-after-free. Credit to miaubiz.
  • [$2000] [98773] [99167] High CVE-2011-3886: Out of bounds writes in v8. Credit to Christian Holler.
  • [$1500] [98407] Medium CVE-2011-3887: Cookie theft with javascript URIs. Credit to Sergey Glazunov.
  • [$1000] [99138] High CVE-2011-3888: Use-after-free with plug-in and editing. Credit to miaubiz.
  • [$2000] [99211] High CVE-2011-3889: Heap overflow in Web Audio. Credit to miaubiz.
  • [99553] High CVE-2011-3890: Use-after-free in video source handling. Credit to Ami Fischman of the Chromium development community.
  • [100332] High CVE-2011-3891: Exposure of internal v8 functions. Credit to Steven Keuchel of the Chromium development community plus independent discovery by Daniel Divricean.

New in version 15.0.874.102 Beta (October 24th, 2011)

  • This version includes a crash fix (75604) and a fix to crash reporting on Linux.

New in version 16.0.912.4 Alpha (October 21st, 2011)

  • Updated V8 - 3.6.6.5
  • Fixed stability issue in Print and Instant

New in version 15.0.874.100 Beta (October 20th, 2011)

  • Updated V8 - 3.5.10.22
  • Numerous buffering fixes and optimizations for HTML5 media elements. (99775, 99749, 100439)
  • Tuned the omnibox to recognize more types of inputs as intranet navigations (99131, 94806)
  • Fixed several crashes and hangs (98975, 98948, 98955, 96861)
  • Fixed Omnibox enters keyword search mode incorrectly (95454)
  • Linux:
  • Fixed partially visible toolbar in fullscreen mode (97177)

New in version 16.0.912.0 Alpha (October 19th, 2011)

  • Updated V8 - 3.6.6.3
  • Native Client and Pepper plug-ins will be able to go use First Person controls for games and other applications after they go full screen and lock the mouse cursor. See PPB_MouseLock::LockMouse.

New in version 15.0.874.92 Beta (October 13th, 2011)

  • Updated V8 - 3.5.10.17
  • Fixed crash during Print Preview (96063)
  • Fixed excessive margins in printing (92000)
  • Fixed large downloads don't show progress (94468)
  • Fixed Netflix/Silverlight error (97319)
  • Disabled acceleration for background pages (96006)
  • Restored the old bookmark menus (93674)
  • Added support for an optional "requirements" section in extension/app manifests (99241)

New in version 15.0.874.83 Beta (October 7th, 2011)

  • Updated V8 - 3.5.10.16
  • Only deliver extension messages to contexts that care (96544, 76571)
  • Fix scrolling of full-frame pdf docs in accelerated compositing mode (93482)

New in version 15.0.874.81 Beta (October 5th, 2011)

  • Updated V8 - 3.5.10.15
  • Match main window notification subscription/unsubscription in BookmarkBarController
  • Fixed a deadlock induced by this pref being set in response to bookmark sync events (97955)
  • Enable floating bookmarks bar for NTP4 for M15 beta branch (98572)

New in version 14.0.835.202 (October 5th, 2011)

  • [$1000] [93788] High CVE-2011-2876: Use-after-free in text line box handling. Credit to miaubiz.
  • [$1000] [95072] High CVE-2011-2877: Stale font in SVG text handling. Credit to miaubiz.
  • [$2000] [95671] High CVE-2011-2878: Inappropriate cross-origin access to the window prototype. Credit to Sergey Glazunov.
  • [96150] High CVE-2011-2879: Lifetime and threading issues in audio node handling. Credit to Google Chrome Security Team (Inferno).
  • [$4500] [97451] [97520] [97615] High CVE-2011-2880: Use-after-free in the v8 bindings. Credit to Sergey Glazunov.
  • [$1500] [97784] High CVE-2011-2881: Memory corruption with v8 hidden objects. Credit to Sergey Glazunov.
  • [98089] Critical CVE-2011-3873: Memory corruption in shader translator. Credit to Zhenyao Mo of the Chromium development community.

New in version 16.0.899.0 Alpha (October 4th, 2011)

  • Updated V8 - 3.6.4.1
  • FTP: fixed compatibility issue with ftp.comconlink.co.za, issue 98212
  • HTML5 audio uses faster method of communications between host and renderer, thus reducing lag for Javascript objects; should be most noticeable in games, issue 61022
  • Fixed many known stability issues.
  • Fixed compile error with Heimdal, r103369

New in version 15.0.874.54 Beta (September 30th, 2011)

  • Updated V8 - 3.5.10.14
  • Notification promos work with New Tab Page (Issue: 93201)

New in version 16.0.891.0 Alpha (September 27th, 2011)

  • Linux: Enabled Native Client for 32-bit Linux and also addresses a performance issue for Native Client on Intel Atom CPUs. [Issue: 92964], [nativeclient: 480]
  • Linux: Fixed fetching proxy settings on Gnome 3 systems when glib2-dev package is not installed. [Issue: 91744]
  • All: Fixed many known stability issues.

New in version 15.0.874.24 Beta (September 23rd, 2011)

  • A brand new New Tab Page
  • Javascript Fullscreen API is now enabled by default
  • Chrome Web Store items can now be installed inline by their verified site (more information for developers can be found here.)
  • Omnibox History is now an additional sync data type

New in version 16.0.889.0 Alpha (September 23rd, 2011)

  • Updated V8 - 3.6.4.0
  • FTP: fixed compatibility with servers which send 451 response for CWD command. (Issue 96401)
  • Windows and Mac: Enabled multi-users (multi-profiles) by default.
  • Fixed many known stability issues.

New in version 15.0.874.21 Alpha (September 21st, 2011)

  • Fixed a bug that caused a crash if you tried to use the speech input keystroke (Ctrl+Shift+Period) on a (non-speech-enabled) textarea.
  • Fixed many known stability issues.

New in version 14.0.835.186 (September 21st, 2011)

  • This release includes an update to Flash Player that addresses a zero-day vulnerability.

New in version 15.0.874.15 Alpha (September 19th, 2011)

  • Pepper flash 11.0.31.105
  • Netflix plugin 1.2.4
  • Fix several functionality and stability issues

New in version 14.0.835.163 (September 16th, 2011)

  • [49377] High CVE-2011-2835: Race condition in the certificate cache. Credit to Ryan Sleevi of the Chromium development community.
  • [51464] Low CVE-2011-2836: Infobar the Windows Media Player plug-in to avoid click-free access to the system Flash. Credit to electronixtar.
  • [Linux only] [57908] Low CVE-2011-2837: Use PIC / pie compiler flags. Credit to wbrana.
  • [75070] Low CVE-2011-2838: Treat MIME type more authoritatively when loading plug-ins. Credit to Michal Zalewski of the Google Security Team.
  • [76771] High CVE-2011-2839: Crash in v8 script object wrappers. Credit to Kostya Serebryany of the Chromium development community.
  • [78427] [83031] Low CVE-2011-2840: Possible URL bar spoofs with unusual user interaction. Credit to kuzzcc.
  • [$500] [78639] High CVE-2011-2841: Garbage collection error in PDF. Credit to Mario Gomes.
  • [Mac only] [80680] Low CVE-2011-2842: Insecure lock file handling in the Mac installer. Credit to Aaron Sigel of vtty.com.
  • [82438] Medium CVE-2011-2843: Out-of-bounds read with media buffers. Credit to Kostya Serebryany of the Chromium development community.
  • [85041] Medium CVE-2011-2844: Out-of-bounds read with mp3 files. Credit to Mario Gomes.
  • [$1000] [89219] High CVE-2011-2846: Use-after-free in unload event handling. Credit to Arthur Gerkis.
  • [$1000] [89330] High CVE-2011-2847: Use-after-free in document loader. Credit to miaubiz.
  • [$500] [89564] Medium CVE-2011-2848: URL bar spoof with forward button. Credit to Jordi Chancel.
  • [89795] Low CVE-2011-2849: Browser NULL pointer crash with WebSockets. Credit to Arthur Gerkis.
  • [$500] [89991] Medium CVE-2011-3234: Out-of-bounds read in box handling. Credit to miaubiz.
  • [90134] Medium CVE-2011-2850: Out-of-bounds read with Khmer characters. Credit to miaubiz.
  • [90173] Medium CVE-2011-2851: Out-of-bounds read in video handling. Credit to Google Chrome Security Team (Inferno).
  • [$500] [91120] High CVE-2011-2852: Off-by-one in v8. Credit to Christian Holler.
  • [91197] High CVE-2011-2853: Use-after-free in plug-in handling. Credit to Google Chrome Security Team (SkyLined).
  • [$1000] [92651] [94800] High CVE-2011-2854: Use-after-free in ruby / table style handing. Credit to Sławomir Błażek, and independent later discoveries by miaubiz and Google Chrome Security Team (Inferno).
  • [$1000] [92959] High CVE-2011-2855: Stale node in stylesheet handling. Credit to Arthur Gerkis.
  • [$2000] [93416] High CVE-2011-2856: Cross-origin bypass in v8. Credit to Daniel Divricean.
  • [$1000] [93420] High CVE-2011-2857: Use-after-free in focus controller. Credit to miaubiz.
  • [$1000] [93472] High CVE-2011-2834: Double free in libxml XPath handling. Credit to Yang Dingning from NCNIPC, Graduate University of Chinese Academy of Sciences.
  • [93497] Medium CVE-2011-2859: Incorrect permissions assigned to non-gallery pages. Credit to Bernhard ‘Bruhns’ Brehm of Recurity Labs.
  • [$1000] [93587] High CVE-2011-2860: Use-after-free in table style handling. Credit to miaubiz.
  • [93596] Medium CVE-2011-2861: Bad string read in PDF. Credit to Aki Helin of OUSPG.
  • [$2337] [93906] High CVE-2011-2862: Unintended access to v8 built-in objects. Credit to Sergey Glazunov.
  • [95563] Medium CVE-2011-2864: Out-of-bounds read with Tibetan characters. Credit to Google Chrome Security Team (Inferno).
  • [95625] Medium CVE-2011-2858: Out-of-bounds read with triangle arrays. Credit to Google Chrome Security Team (Inferno).
  • [95917] Low CVE-2011-2874: Failure to pin a self-signed cert for a session. Credit to Nishant Yadant of VMware and Craig Chamberlain (@randomuserid).
  • [$1000] [95920] High CVE-2011-2875: Type confusion in v8 object sealing. Credit to Christian Holler.

New in version 15.0.874.15 Alpha (September 16th, 2011)

  • Updated V8 3.5.10.9
  • JavaScript fullscreen API now enabled by default.
  • Bug fixes and visual improvements for the New Tab Page.
  • Fixed many known stability issues.
  • Known Issue: Linux-only: Chrome crashes with Ctrl+P. [Issue: 96734]

New in version 14.0.835.163 Beta (September 15th, 2011)

  • This release re-enables the enhanced completion functionality and takes some additional stability patches.

New in version 15.0.874.12 Alpha (September 14th, 2011)

  • Updated V8 3.5.10.7
  • Print preview issues with self-closing popups have been fixed.
  • Fixed many known stability issues.

New in version 14.0.835.126 Beta (September 2nd, 2011)

  • This release has disabled accelerated 2D canvas for Windows, along with other stability fixes.

New in version 14.0.835.124 Beta (September 1st, 2011)

  • This release contains fixes for a number of plugin stability issues and other bugs.

New in version 13.0.782.218 (August 31st, 2011)

  • These releases contain an updated version of the Adobe Flash Player.

New in version 14.0.835.122 Beta (August 31st, 2011)

  • This release contains fixes for a number of stability issues along with other bugs, and an updated version of Adobe Flash Player.

New in version 15.0.865.0 Alpha (August 30th, 2011)

  • Updated V8 3.5.8.0
  • r98474: Fixed some downloads crashers occurring due to over-aggressive consistency checks.
  • Print Preview is working once again.
  • Fixed issue where turning on sync encryption could remove bookmark titles.

New in version 15.0.861.0 Alpha (August 25th, 2011)

  • Updated V8 3.5.7.0
  • Fixes a blank popup issue for extensions (Issue: 92669).
  • Fixes being unable to close tabs by clicking the ‘x’ button on the tab (Issue: 92771).

New in version 14.0.835.109 Beta (August 24th, 2011)

  • This release contains fixes for a number of stability issues along with other bugs.

New in version 13.0.782.215 (August 23rd, 2011)

  • [$1000] [Windows only] [72492] Medium CVE-2011-2822: URL parsing confusion on the command line. Credit to Vladimir Vorontsov, ONsec company.
  • [82552] High CVE-2011-2823: Use-after-free in line box handling. Credit to Google Chrome Security Team (SkyLined) and independent later discovery by miaubiz.
  • [$1000] [88216] High CVE-2011-2824: Use-after-free with counter nodes. Credit to miaubiz.
  • [88670] High CVE-2011-2825: Use-after-free with custom fonts. Credit to wushi of team509 reported through ZDI (ZDI-CAN-1283), plus indepdendent later discovery by miaubiz.
  • [$1000] [89402] High CVE-2011-2821: Double free in libxml XPath handling. Credit to Yang Dingning from NCNIPC, Graduate University of Chinese Academy of Sciences.
  • [$1000] [87453] High CVE-2011-2826: Cross-origin violation with empty origins. Credit to Sergey Glazunov.
  • [$1337] [Windows only] [89836] Critical CVE-2011-2806: Memory corruption in vertex handing. Credit to Michael Braithwaite of Turbulenz Limited.
  • [$1000] [90668] High CVE-2011-2827: Use-after-free in text searching. Credit to miaubiz.
  • [91517] High CVE-2011-2828: Out-of-bounds write in v8. Credit to Google Chrome Security Team (SkyLined).
  • [$1500] [32-bit only] [91598] High CVE-2011-2829: Integer overflow in uniform arrays. Credit to Sergey Glazunov.
  • [$1000] [Linux only] [91665] High CVE-2011-2839: Buggy memset() in PDF. Credit to Aki Helin of OUSPG.

New in version 15.0.854.0 Alpha (August 17th, 2011)

  • Updated V8 3.5.5.0
  • [r96420] Fixed uninstalls for forced install extensions [Issue 86519]
  • Fixed many known stability issues
  • [r96518] Fixed import success message when user cancels the import [Issue 88947]

New in version 14.0.835.94 Beta (August 16th, 2011)

  • This release contains fixes for a number of stability issues along with other bugs.

New in version 15.0.849.0 Alpha (August 12th, 2011)

  • Updated V8 3.5.2.0
  • [r96275] FTP: added directory listing parser for OS/2 format, Issue 92154
  • [r96073] FTP: fix directory listing parsing for Hylafax, Issue 90807
  • Large speed improvement for print preview
  • This release also contains fixes for many known stability issues.

New in version 14.0.835.35 Alpha (August 11th, 2011)

  • This release contains an updated version of full screen mode for Mac OS X Lion, along with fixes for a number of stability issues on Lion and other platforms.

New in version 14.0.835.29 Alpha (August 9th, 2011)

  • This release contains fixes for a number of issues, along with increased stability on Mac OS X Lion.

New in version 13.0.782.107 (August 3rd, 2011)

  • [75821] Medium CVE-2011-2358: Always confirm an extension install via a browser dialog. Credit to Sergey Glazunov.
  • [$1000 each] [78841] High CVE-2011-2359: Stale pointer due to bad line box tracking in rendering. Credit to miaubiz and Martin Barbella.
  • [79266] Low CVE-2011-2360: Potential bypass of dangerous file prompt. Credit to kuzzcc.
  • [79426] Low CVE-2011-2361: Improve designation of strings in the basic auth dialog. Credit to kuzzcc.
  • [Linux only] [81307] Medium CVE-2011-2782: File permissions error with drag and drop. Credit to Evan Martin of the Chromium development community.
  • [83273] Medium CVE-2011-2783: Always confirm a developer mode NPAPI extension install via a browser dialog. Credit to Sergey Glazunov.
  • [83841] Low CVE-2011-2784: Local file path disclosure via GL program log. Credit to kuzzcc.
  • [84402] Low CVE-2011-2785: Sanitize the homepage URL in extensions. Credit to kuzzcc.
  • [84600] Low CVE-2011-2786: Make sure the speech input bubble is always on-screen. Credit to Olli Pettay of Mozilla.
  • [84805] Medium CVE-2011-2787: Browser crash due to GPU lock re-entrancy issue. Credit to kuzzcc.
  • [85559] Low CVE-2011-2788: Buffer overflow in inspector serialization. Credit to Mikołaj Małecki.
  • [$500 each] [85808] Medium CVE-2011-2789: Use after free in Pepper plug-in instantiation. Credit to Mario Gomes and kuzzcc.
  • [$1000] [86502] High CVE-2011-2790: Use-after-free with floating styles. Credit to miaubiz.
  • [$1000] [86900] High CVE-2011-2791: Out-of-bounds write in ICU. Credit to Yang Dingning from NCNIPC, Graduate University of Chinese Academy of Sciences.
  • [$1000] [87148] High CVE-2011-2792: Use-after-free with float removal. Credit to miaubiz.
  • [$1000] [87227] High CVE-2011-2793: Use-after-free in media selectors. Credit to miaubiz.
  • [$500] [87298] Medium CVE-2011-2794: Out-of-bounds read in text iteration. Credit to miaubiz.
  • [$500] [87339] Medium CVE-2011-2795: Cross-frame function leak. Credit to Shih Wei-Long.
  • [87548] High CVE-2011-2796: Use-after-free in Skia. Credit to Google Chrome Security Team (Inferno) and Kostya Serebryany of the Chromium development community.
  • [$1000] [87729] High CVE-2011-2797: Use-after-free in resource caching. Credit to miaubiz.
  • [87815] Low CVE-2011-2798: Prevent a couple of internal schemes from being web accessible. Credit to sirdarckcat of the Google Security Team.
  • [$1000] [87925] High CVE-2011-2799: Use-after-free in HTML range handling. Credit to miaubiz.
  • [$500] [88337] Medium CVE-2011-2800: Leak of client-side redirect target. Credit to Juho Nurminen.
  • [$1000] [88591] High CVE-2011-2802: v8 crash with const lookups. Credit to Christian Holler.
  • [88827] Medium CVE-2011-2803: Out-of-bounds read in Skia paths. Credit to Google Chrome Security Team (Inferno).
  • [$1000] [88846] High CVE-2011-2801: Use-after-free in frame loader. Credit to miaubiz.
  • [$1000] [88889] High CVE-2011-2818: Use-after-free in display box rendering. Credit to Martin Barbella.
  • [$500] [89142] High CVE-2011-2804: PDF crash with nested functions. Credit to Aki Helin of OUSPG.
  • [$1500] [89520] High CVE-2011-2805: Cross-origin script injection. Credit to Sergey Glazunov.
  • [$1500] [90222] High CVE-2011-2819: Cross-origin violation in base URI handling. Credit to Sergey Glazunov.

New in version 14.0.835.15 Alpha (August 2nd, 2011)

  • This release contains fixes for sync and stability.

New in version 14.0.835.8 Alpha (July 29th, 2011)

  • Updated V8 - 3.4.14.2
  • [r94125] Unable to open PDF files (bug 90535)

New in version 14.0.835.0 Alpha (July 27th, 2011)

  • Updated V8 - 3.4.13.0
  • Implemented WebSocket HyBi 10 handshake and framing.

New in version 14.0.825.0 Alpha (July 19th, 2011)

  • Updated V8 - 3.4.12.1

New in version 14.0.814.0 Alpha (July 12th, 2011)

  • Updated V8 - 3.4.7.0

New in version 12.0.742.112 (June 29th, 2011)

  • [77493] Medium CVE-2011-2345: Out-of-bounds read in NPAPI string handling. Credit to Philippe Arteau.
  • [84355] High CVE-2011-2346: Use-after-free in SVG font handling. Credit to miaubiz.
  • [85003] High CVE-2011-2347: Memory corruption in CSS parsing. Credit to miaubiz.
  • [85102] High CVE-2011-2350: Lifetime and re-entrancy issues in the HTML parser. Credit to miaubiz.
  • [85177] High CVE-2011-2348: Bad bounds check in v8. Credit to Aki Helin of OUSPG.
  • [85211] High CVE-2011-2351: Use-after-free with SVG use element. Credit to miaubiz.
  • [85418] High CVE-2011-2349: Use-after-free in text selection. Credit to miaubiz.

New in version 14.0.803.0 Alpha (June 28th, 2011)

  • Updated V8 - 3.4.6.2
  • [r90216] Change the meaning of third-party cookie blocking to allow whitelists (Issue 82039)
  • [r90417] Remove the Global Bookmarks menu by default on Ubuntu Natty, in an attempt to fix minute long startup regression on desktop environments that use dbusmenu. (Issue 86715)

New in version 14.0.797.0 Alpha (June 21st, 2011)

  • Updated V8 - 3.4.4.0
  • Print workflow: Chrome Frame displays both Print Dialog and Print Preview (Issue: 86226)
  • Crash when canceling print (Issue: 86229)
  • Mouse back and forward buttons stopped working (Issue: 84836)

New in version 14.0.794.0 Alpha (June 17th, 2011)

  • All:
  • Updated V8 - 3.4.3.0
  • When installing items from the chrome webstore, we now always prompt with a native confirmation dialog.
  • Fix for failing navigation with chrome://newtab showing.
  • Linux:
  • Added a makeshift multiprofile button.
  • Security:
  • DNSSEC authenticated HTTPS supported.
  • Intermittent connectivity issues with broken SSLv3 servers fixed.

New in version 13.0.782.24 Alpha (June 16th, 2011)

  • This release contains a number of stability fixes and the Flash update.

New in version 12.0.742.100 (June 15th, 2011)

  • This release contains an updated version of Adobe Flash

New in version 13.0.782.20 Alpha (June 14th, 2011)

  • This release contains a number of stability fixes and we put hardware accelerated Canvas 2D back behind a flag.

New in version 13.0.782.15 Alpha (June 10th, 2011)

  • This release contains a number of stability fixes.

New in version 13.0.782.13 Alpha (June 9th, 2011)

  • This release contains a number of UI tweaks and stabilities fixes.

New in version 12.0.742.91 (June 8th, 2011)

  • Hardware accelerated 3D CSS
  • New Safe Browsing protection against downloading malicious files
  • Ability to delete Flash cookies from inside Chrome
  • Launch Apps by name from the Omnibox
  • Integrated Sync into new settings pages
  • Improved screen reader support
  • New warning when hitting Command-Q on Mac
  • Removal of Google Gears

New in version 13.0.782.11 Alpha (June 8th, 2011)

  • This release contains a number of UI tweaks and stabilities fixes.

New in version 12.0.742.91 Beta (June 7th, 2011)

  • This release contains additional stability fixes.

New in version 13.0.782.10 Alpha (June 6th, 2011)

  • This release contains an updated version of Adobe Flash.

New in version 12.0.742.77 Beta (June 3rd, 2011)

  • This release contains a small number of UI updates and performance fixes

New in version 13.0.782.1 Alpha (June 2nd, 2011)

  • Print preview refinements
  • IndexedDB+LevelDB made available in about:flags
  • Canvas 2D moved out from behind a flag (on by default)

New in version 12.0.742.68 Beta (May 26th, 2011)

  • This release contains a small number of UI updates and performance fixes.

New in version 11.0.696.71 (May 25th, 2011)

  • Low CVE-2011-1801: Pop-up blocker bypass. Credit to Chamal De Silva.
  • [82546] High CVE-2011-1804: Stale pointer in floats rendering. Credit to Martin Barbella.
  • [82873] Critical CVE-2011-1806: Memory corruption in GPU command buffer. Credit to Google Chrome Security Team (Cris Neckar).
  • [82903] Critical CVE-2011-1807: Out-of-bounds write in blob handling. Credit to Google Chrome Security Team (Inferno) and Kostya Serebryany of the Chromium development community.
  • The following bugs were fixed:
  • REGRESSION: selection extended by arrow keys flickers on LinkedIn.com. (Issue 83197).
  • Have ConnectBackupJob try IPv4 first to hide potential long IPv6 connect timeout (Issue 81686).
  • Mac plugin crashes are too low in stats (Issue 82172).
  • Incorrect ACLs on the archived copy of setup.exe (Issue 82424)

New in version 13.0.772.0 Alpha (May 24th, 2011)

  • Updated V8 - 3.3.8.1
  • Continued work on Print Preview
  • Making progress on rel:preload
  • Crash fixes

New in version 12.0.742.60 Beta (May 19th, 2011)

  • This release contains a number of UI tweaks and performance fixes.

New in version 13.0.767.1 Alpha (May 18th, 2011)

  • All:
  • Print preview work continues
  • Omnibox string matching improvements
  • Linux:
  • We are discontinuing support for Ubuntu Hardy for 13.0, in effect matching that Ubuntu has officially stopped supporting Hardy (including stopping security updates) as of May 12th, 2011.

New in version 12.0.742.53 Beta (May 16th, 2011)

  • This release contains a number of UI tweaks and performance fixes.

New in version 11.0.696.68 (May 16th, 2011)

  • [64046] High CVE-2011-1799: Bad casts in Chromium WebKit glue. Credit to Google Chrome Security Team (SkyLined).
  • [80608] High CVE-2011-1800: Integer overflows in SVG filters. Credit to Google Chrome Security Team (Cris Neckar)

New in version 11.0.696.68 (May 13th, 2011)

  • [64046] High CVE-2011-1799: Bad casts in Chromium WebKit glue. Credit to Google Chrome Security Team (SkyLined).
  • [80608] High CVE-2011-1800: Integer overflows in SVG filters. Credit to Google Chrome Security Team (Cris Neckar).

New in version 12.0.742.30 Beta (May 10th, 2011)

  • Hardware accelerated 3D CSS
  • New Safe Browsing protection against downloading malicious files
  • Ability to delete Flash cookies from inside Chrome
  • Launch Apps by name from the Omnibox
  • Integrated Sync into new settings pages
  • Improved screen reader support
  • New warning when hitting Command-Q on Mac
  • Removal of Google Gears

New in version 12.0.742.30 Alpha (May 9th, 2011)

  • This release contains an updated version of Flash.

New in version 11.0.696.65 (May 9th, 2011)

  • After deleting bookmarks on the Bookmark managers, the bookmark bar doesn't display properly with existing bookmarks. (Issue 80580).
  • About Google Chrome window shows unknown channel for 11.0.696.57 (Issue 80683).
  • Chrome/Mac seems to clobber focus when uploading attachments to Gmail with the flash-based uploader (Issue 77172).
  • Also included is an updated version of Flash Player 10.2.

New in version 12.0.742.21 Alpha (May 6th, 2011)

  • This release contains fixes for a number of UI, performance, and stability issues. It also contains an update for Mac [bug 80602] that fixes garbage being displayed when the accelerated compositor was active. This primarily affected 3D CSS transforms and WebGL content.

New in version 12.0.742.16 Alpha (May 3rd, 2011)

  • This release continues to address UI and performance issues.

New in version 11.0.696.57 (April 27th, 2011)

  • [61502] High CVE-2011-1303: Stale pointer in floating object handling. Credit to Scott Hess of the Chromium development community and Martin Barbella.
  • [70538] Low CVE-2011-1304: Pop-up block bypass via plug-ins. Credit to Chamal De Silva.
  • [Linux / Mac only] [70589] Medium CVE-2011-1305: Linked-list race in database handling. Credit to Kostya Serebryany of the Chromium development community.
  • [$500] [71586] Medium CVE-2011-1434: Lack of thread safety in MIME handling. Credit to Aki Helin.
  • [72523] Medium CVE-2011-1435: Bad extension with ‘tabs’ permission can capture local files. Credit to Cole Snodgrass.
  • [Linux only] [72910] Low CVE-2011-1436: Possible browser crash due to bad interaction with X. Credit to miaubiz.
  • [$1000] [73526] High CVE-2011-1437: Integer overflows in float rendering. Credit to miaubiz.
  • [$1000] [74653] High CVE-2011-1438: Same origin policy violation with blobs. Credit to kuzzcc.
  • [Linux only] [74763] High CVE-2011-1439: Prevent interference between renderer processes. Credit to Julien Tinnes of the Google Security Team.
  • [$1000] [75186] High CVE-2011-1440: Use-after-free with tag and CSS. Credit to Jose A. Vazquez.
  • [$500] [75347] High CVE-2011-1441: Bad cast with floating select lists. Credit to Michael Griffiths.
  • [$1000] [75801] High CVE-2011-1442: Corrupt node trees with mutation events. Credit to Sergey Glazunov and wushi of team 509.
  • [$1000] [76001] High CVE-2011-1443: Stale pointers in layering code. Credit to Martin Barbella.
  • [$500] [Linux only] [76542] High CVE-2011-1444: Race condition in sandbox launcher. Credit to Dan Rosenberg.
  • [76646] Medium CVE-2011-1445: Out-of-bounds read in SVG. Credit to wushi of team509.
  • [$3000] [76666] [77507] [78031] High CVE-2011-1446: Possible URL bar spoofs with navigation errors and interrupted loads. Credit to kuzzcc.
  • [$1000] [76966] High CVE-2011-1447: Stale pointer in drop-down list handling. Credit to miaubiz.
  • [$1000] [77130] High CVE-2011-1448: Stale pointer in height calculations. Credit to wushi of team509.
  • [$1000] [77346] High CVE-2011-1449: Use-after-free in WebSockets. Credit to Marek Majkowski.
  • [77349] Low CVE-2011-1450: Dangling pointers in file dialogs. Credit to kuzzcc.
  • [$2000] [77463] High CVE-2011-1451: Dangling pointers in DOM id map. Credit to Sergey Glazunov.
  • [$500] [77786] Medium CVE-2011-1452: URL bar spoof with redirect and manual reload. Credit to Jordi Chancel.
  • [$1500] [79199] High CVE-2011-1454: Use-after-free in DOM id handling. Credit to Sergey Glazunov.
  • [79361] Medium CVE-2011-1455: Out-of-bounds read with multipart-encoded PDF. Credit to Eric Roman of the Chromium development community.
  • [79364] High CVE-2011-1456: Stale pointers with PDF forms. Credit to Eric Roman of the Chromium development community.

New in version 11.0.696.57 Beta (April 27th, 2011)

  • REGRESSION: left property broken with position:fixed elements in RTL documents. (Issue 80216).
  • REGRESSION: Bottom of window Border is drawn 1 Pixel Higher than it should be (Issue 79640).
  • REGRESSION: Chromium window goes beyond the screen for non-Aero themes (Issue 80391).

New in version 12.0.742.0 Alpha (April 21st, 2011)

  • This release contains stability and performance fixes.

New in version 11.0.696.48 Beta (April 15th, 2011)

  • This release contains a new version of Adobe Flash which includes a fix for security vulnerability.

New in version 10.0.648.205 (April 15th, 2011)

  • Critical CVE-2011-1301: Use-after-free in the GPU process. Credit to Google Chrome Security Team (Inferno).
  • Critical CVE-2011-1302: Heap overflow in the GPU process. Credit to Christoph Diehl.

New in version 11.0.696.43 Beta (April 13th, 2011)

  • Passwords sync: passwords sync commits after EVERY browser restart (Issue 78548).
  • Autofill fails to fill forms (Issue 78509).
  • A few known crashes (Issue 78688, Issue 68350, Issue 77665, Issue 74585, Issue 76092, Issue 77219 and Issue 77447).
  • Redirect to my site without CFInstall.js (Issue 60018).
  • Update Silverlight v3 version metadata (Issue 78005).
  • Blocked plug-in dialog: make sure "Run this time" button is the first one (Issue 78120).
  • Policy: Proxy configuration over policy does not work. (Issue 78016).
  • Editing style adds the word "initial" for any property value that uses a paren (Issue 75302).
  • Google Chrome Helper doesn't quit, killing it relaunches a new helper process (Issue 74983).

New in version 12.0.733.0 Alpha (April 13th, 2011)

  • This release contains updates focused on stability and UI tweaks.

New in version 12.0.725.0 Alpha (April 6th, 2011)

  • Updated V8 - 3.2.6.0
  • Spring cleaning in the code, lots of code cleanup and refactoring under the covers

New in version 11.0.696.34 Beta (April 5th, 2011)

  • Duplicate desktop icon is created using First Run UI even if it's present (Issue 5073).
  • FLACEncoder::Encode has mismatched free (Issue 77653).
  • Switch from using Speex to FLAC for speech input requests (Issue 61677).
  • Chrome hangs on form submit with lots of stored Autofill profiles (Issue 75862).
  • Browser crash if tab is closed while page is being downloaded (Issue 76963).

New in version 11.0.696.25 Beta (March 29th, 2011)

  • cloud print: Error running service on the headless machine (Issue 76991).
  • sync: Not registering for NIGORI data types (Issue 76268).
  • A known crash (Issue 76998 ).
  • REGRESSION: img of extensions not displayed in chrome://extensions within an incognito window (Issue 74905).
  • Cloud policy fetch loop upon POLICY_NOT_FOUND answer from the server (Issue 77232).
  • Token fetcher doesn't correctly enter unmanaged state (Issue 77185).
  • Memory Leak in ChromeFrame in the AutomationResourceMessageFilter::SetCookiesForUrl function (Issue 77421).
  • REGRESSION: Arrows not showing up on tabstrip while dropping links (Issue 74764).
  • Java: Direct users to the right download page (Issue 76634).
  • add es-419, fr-Foo and en-Foo and zh_HK/zh_Hant_HK to Accept-Language list(Issue 62715).

New in version 12.0.712.0 Alpha (March 25th, 2011)

  • Updated V8 - 3.2.3.1
  • Tab Multi-Select - The ability to select multiple tabs, using the ctrl key, and applying actions (e.g. reload) to them all.

New in version 10.0.648.204 (March 25th, 2011)

  • High CVE-2011-1291: Buffer error in base string handling. Credit to Alex Turpin.
  • High CVE-2011-1292: Use-after-free in the frame loader. Credit to Sławomir Błażek.
  • High CVE-2011-1293: Use-after-free in HTMLCollection. Credit to Sergey Glazunov.
  • High CVE-2011-1294: Stale pointer in CSS handling. Credit to Sergey Glazunov.
  • High CVE-2011-1295: DOM tree corruption with broken node parentage. Credit to Sergey Glazunov.
  • High CVE-2011-1296: Stale pointer in SVG text handling. Credit to Sergey Glazunov.

New in version 11.0.696.16 Beta (March 23rd, 2011)

  • HTML5 speech input API
  • GPU-accelerated 3D CSS
  • The brand new shiny Chrome icon

New in version 11.0.696.16 Alpha (March 22nd, 2011)

  • clicking on the labels of checkboxes / radio buttons closes content settings dialog box (Issue 76115).
  • Unlock Keyring makes chrome unusable (Issue 72499 ).
  • Sample extension for chrome.experimental.proxy API (Issue 62700 ).
  • Several known crashes (Issue 76401 and Issue 75264 ).

New in version 11.0.696.14 Alpha (March 18th, 2011)

  • about:gpu can still launch GPU process even though GPU is blocked by software rendering list (Issue 76115).
  • REGRESSION: After crash, Restore infobar shows up everytime you open a link from external app (Issue 75654 ).
  • App context-menu doesn't disappear even after uninstalling the extension, causes crash when selected (Issue 75662).
  • A known crash (Issue 74777).
  • Fails SPDY-related check (Issue 77893).

New in version 10.0.648.151 (March 18th, 2011)

  • This release blacklists a small number of HTTPS certificates.

New in version 11.0.696.12 Alpha (March 16th, 2011)

  • New York Times Chrome app crashes on the Chorme Dev Channel (Issue 75563).
  • Sync login dlg is truncated (Issue 72490 ).
  • Status bar / target URL not shown when hovering over links(Issue 75268).
  • Several known crashes (Issues 75171 and 75443 and 75828).
  • Bookmark focus is not lost when moved away from the bookmark bar (Issue 75367).
  • Tooltips from browser tabs are persisting for too long (Issue 75334 ).
  • Content settings updates don't reflect the current Incognito session(Issue 74466).
  • NewTabPage is not updating when a new theme is applied (Issue 74311).
  • Fixed download requests in chrome frame which occur in response to top level POSTs (Issue 73985 ).
  • Chrome locks up on form submit, constantly duplicating autofill settings to blame(Issue 74911).

New in version 10.0.648.134 (March 16th, 2011)

  • This release contains an updated version of the Adobe Flash player.

New in version 10.0.648.133 (March 13th, 2011)

  • CVE-2011-1290 [75712] High Memory corruption in style handling. Credit to Vincenzo Iozzo, Ralf Philipp Weinmann and Willem Pinckaers reported through ZDI.

New in version 11.0.696.3 Alpha (March 11th, 2011)

  • Can not select omnibox auto suggested entries by clicking at it (Issue 75366).
  • Linux: "Behavior " string is not externalized on the Exceptions page(Issue 74080).
  • Chromium not loading some plugins (Issue 75351).
  • POST omits body after NTLM authentication (Issue 62687).

New in version 10.0.648.127 (March 9th, 2011)

  • New version of V8 - Crankshaft - which greatly improves javascript performance
  • New settings pages that open in a tab, rather than a dialog box
  • Improved security with malware reporting and disabling outdated plugins by default
  • Sandboxed Adobe Flash on Windows
  • Password sync as part of Chrome Sync now enabled by default
  • GPU Accelerated Video
  • Background WebApps
  • webNavigation extension API

New in version 11.0.696.0 Alpha (March 9th, 2011)

  • All:
  • Updated V8 - 3.2.0.1
  • New “cookies and other data” page in tabbed settings (Issue 64154).
  • Known Issues:
  • Regression: Can not select omnibox auto suggested entries by clicking at it (Issue 75366)
  • REGRESSION: Bookmark focus is not lost when moved away from the bookmark bar (Issue 75367)

New in version 10.0.648.127 Beta (March 4th, 2011)

  • [Bug 74709] Clicking "Disable individual plug-ins" in Options causes crash

New in version 10.0.648.126 Beta (March 3rd, 2011)

  • [Bug 74709] Clicking "Disable individual plug-ins" in Options causes crash

New in version 9.0.597.107 (March 1st, 2011)

  • [54262] High URL bar spoof. Credit to Jordi Chancel.
  • [63732] High Crash with javascript dialogs. Credit to Sergey Radchenko.
  • [68263] High Stylesheet node stale pointer. Credit to Sergey Glazunov.
  • [68741] High Stale pointer with key frame rule. Credit to Sergey Glazunov.
  • [70078] High Crash with forms controls. Credit to Stefan van Zanden.
  • [70244] High Crash in SVG rendering. Credit to Sławomir Błażek.
  • [64-bit Linux only] [70376] Medium Out-of-bounds read in pickle deserialization. Credit to Evgeniy Stepanov of the Chromium development community.
  • [71114] High Stale node in table handling. Credit to Martin Barbella.
  • [71115] High Stale pointer in table rendering. Credit to Martin Barbella.
  • [71296] High Stale pointer in SVG animations. Credit to miaubiz.
  • [71386] High Stale nodes in XHTML. Credit to wushi of team509.
  • [71388] High Crash in textarea handling. Credit to wushi of team509.
  • [71595] High Stale pointer in device orientation. Credit to Sergey Glazunov.
  • Medium Out-of-bounds read in WebGL. Credit to miaubiz.
  • [71855] High Integer overflow in textarea handling. Credit to miaubiz.
  • Medium Out-of-bounds read in WebGL. Credit to Google Chrome Security Team (Inferno).
  • [] High Accidental exposure of internal extension functions. Credit to Tavis Ormandy of the Google Security Team.
  • [72437] High Use-after-free with blocked plug-ins. Credit to Chamal de Silva.
  • [73235] High Stale pointer in layout. Credit to Martin Barbella.

New in version 10.0.648.114 Beta (February 24th, 2011)

  • This release contains stability improvements and UI tweaks.

New in version 10.0.648.82 Beta (February 18th, 2011)

  • New version of V8 - Crankshaft - which greatly improves javascript performance
  • New settings pages that open in a tab, rather than a dialog box
  • Improved security with malware reporting and disabling outdated plugins by default
  • Password sync as part of Chrome Sync now enabled by default
  • GPU Accelerated Video
  • Background WebApps
  • webNavigation extension API

New in version 11.0.672.2 Alpha (February 18th, 2011)

  • Updated V8 - 3.1.4.0
  • Fixed the crash when loading tabbed options in some cases.
  • Fixed a crash triggered when canceling a download. (Issue 70592)
  • Fixed a crash triggered by form resubmissions. (Issue 70315)
  • FTP: fixed a compatibility issue. (Issue 70394)
  • XSS Auditor re-designed and enabled by default. It’s still experimental (and there are known bypasses), but we’re looking for feedback about false positives.

New in version 10.0.648.82 Alpha (February 17th, 2011)

  • This release primarily contains stability fixes from the last dev channel.

New in version 10.0.648.45 Alpha (February 9th, 2011)

  • Updated V8 - 3.0.12.12
  • Update Flash - 10.2
  • Many Crash fixes
  • Background applications UI cleanup
  • Additional settings UI cleanup
  • Fix for differential installers not applying cleanly
  • [r74051] Horizontal scroll should not move the options behind Settings. (Issue 71689)
  • [r74060] No sound in extension with Chromium (Issue 57263)

New in version 9.0.597.94 (February 9th, 2011)

  • [67234] High Stale pointer in animation event handling. Credit to Rik Cabanier.
  • [$1000] [68120] High Use-after-free in SVG font faces. Credit to miaubiz.
  • [$1000] [69556] High Stale pointer with anonymous block handling. Credit to Martin Barbella.
  • [69970] Medium Out-of-bounds read in plug-in handling. Credit to Bill Budge of Google.
  • [$1000] [70456] Medium Possible failure to terminate process on out-of-memory condition. Credit to David Warren of CERT/CC.

New in version 10.0.648.18 Alpha (February 4th, 2011)

  • Updated V8 - 3.0.12.8
  • [73562] Removed icon from View Background Pages menu item in wrench menu. (Issue: 71489)
  • [r73158] Fix crash on closing Download Manager (Issue: 71027)
  • [r73207] Auto-scroll while drag and dropping apps on the New Tab Page (Issue: 70965)
  • webNavigation extension API ready for testing (Issue: 60100)
  • [r73163] Find bug where web text input would sometimes trigger find-in-page (Issue: 70644)

New in version 9.0.597.84 (February 4th, 2011)

  • [$1000] [55831] High Use-after-free in image loading. Credit to Aki Helin of OUSPG.
  • [59081] Low Apply some restrictions to cross-origin drag + drop. Credit to Google Chrome Security Team (SkyLined) and the Google Security Team (Michal Zalewski, David Bloom).
  • [62791] Low Browser crash with extension with missing key. Credit to Brian Kirchoff.
  • [$1000] [64051] High Crashing when printing in PDF event handler. Credit to Aki Helin of OUSPG.
  • [65669] Low Handle merging of autofill profiles more gracefully. Credit to Google Chrome Security Team (Inferno).
  • [Mac only] [66931] Low Work around a crash in the Mac OS 10.5 SSL libraries. Credit to Dan Morrison.
  • [68244] Low Browser crash with bad volume setting. Credit to Matthew Heidermann.
  • [69195] Critical Race condition in audio handling. Credit to the gamers of Reddit!

New in version 10.0.648.6 Alpha (January 27th, 2011)

  • This build primarily contains stability fixes from the previous dev channel release.

New in version 9.0.597.83 Beta (January 26th, 2011)

  • This is primarily a stability/ minor bug fix release.

New in version 10.0.642.2 Alpha (January 21st, 2011)

  • All:
  • Updated V8 - 3.0.7.0
  • Many polish changes and fixes for the new tabbed preferences dialog
  • Several tweaks to Instant
  • [r71435] Integrate about:sync with the new tabbed preference dialog (Issue: 69500)
  • [r71519] Add “Save” and “Print” to the context menu of PDFs in frames (Issue: 50285)
  • Linux:
  • [r71203] Fix crash on some distributions when accessing GNOME Keyring (Issue: 69295)

New in version 9.0.597.67 Beta (January 19th, 2011)

  • Due to stability issues Flash Player sandboxing has been put behind a flag for 9.0. Accelerated composting and WebGL will remain on. The remaining set of changes for this release constituted bug and stability fixes.

New in version 8.0.552.237 (January 13th, 2011)

  • [58053] Medium Browser crash in extensions notification handling. Credit to Eric Roman of the Chromium development community.
  • [$1337] [65764] High Bad pointer handling in node iteration. Credit to Sergey Glazunov.
  • [66334] High Crashes when printing multi-page PDFs. Credit to Google Chrome Security Team (Chris Evans).
  • [$1000] [66560] High Stale pointer with CSS + canvas. Credit to Sergey Glazunov.
  • [$500] [66748] High Stale pointer with CSS + cursors. Credit to Jan Tošovský.
  • [67100] High Use after free in PDF page handling. Credit to Google Chrome Security Team (Chris Evans).
  • [$1000] [67208] High Stack corruption after PDF out-of-memory condition. Credit to Jared Allar of CERT.
  • [$1000] [67303] High Bad memory access with mismatched video frame sizes. Credit to Aki Helin of OUSPG; plus independent discovery by Google Chrome Security Team (SkyLined) and David Warren of CERT.
  • [$500] [67363] High Stale pointer with SVG use element. Credited anonymously; plus indepdent discovery by miaubiz.
  • [$1000] [67393] Medium Uninitialized pointer in the browser triggered by rogue extension. Credit to kuzzcc.
  • [$1000] [68115] High Vorbis decoder buffer overflows. Credit to David Warren of CERT.
  • [$1000] [68170] High Buffer overflow in PDF shading. Credit to Aki Helin of OUSPG.
  • [$1000] [68178] High Bad cast in anchor handling. Credit to Sergey Glazunov.
  • [$1000] [68181] High Bad cast in video handling. Credit to Sergey Glazunov.
  • [$1000] [68439] High Stale rendering node after DOM node removal. Credit to Martin Barbella; plus independent discovery by Google Chrome Security Team (SkyLined).
  • [$3133.7] [68666] Critical Stale pointer in speech handling. Credit to Sergey Glazunov.

New in version 10.0.634.0 Alpha (January 12th, 2011)

  • Updated V8 - 3.0.6.1
  • Chrome no longer says "restart required" when there's no update (Issue 67478)

New in version 9.0.597.45 Beta (January 7th, 2011)

  • Flash Player sandboxing has been restored, and accelerated composting and WebGL have been moved behind flags temporarily: --enable-accelerated-compositing and --enable-webgl respectively.

New in version 10.0.628.0 Alpha (January 6th, 2011)

  • Updated V8 - 3.0.4.1
  • Updated WebKit - 534.16
  • Eliminated crash on shutdown after “Clear All Downloads” (Issue 66676)

New in version 10.0.612.1 Alpha (December 17th, 2010)

  • Updated V8 - 3.0.2.1
  • Updated WebKit - 534.15

New in version 8.0.552.224 (December 14th, 2010)

  • [64-bit Linux only] [56449] High Bad validation for message deserialization on 64-bit builds. Credit to Lei Zhang of the Chromium development community.
  • [60761] Medium Bad extension can cause browser crash in tab handling. Credit to kuzzcc.
  • [63529] Low Browser crash with NULL pointer in web worker handling. Credit to Nathan Weizenbaum of Google.
  • [$1000] [63866] Medium Out-of-bounds read in CSS parsing. Credit to Chris Rohlf.
  • [$1000] [64959] High Stale pointers in cursor handling. Credit to Sławomir Błażek and Sergey Glazunov.

New in version 9.0.597.19 Alpha (December 14th, 2010)

  • This was primarily a crash fix release, in particular resolving a sync related crash issue (Issue: 57898).

New in version 8.0.552.215 (December 3rd, 2010)

  • [17655] Low Possible pop-up blocker bypass. Credit to Google Chrome Security Team (SkyLined).
  • [55745] Medium Cross-origin video theft with canvas. Credit to Nirankush Panchbhai and Microsoft Vulnerability Research (MSVR).
  • [56237] Low Browser crash with HTML5 databases. Credit to Google Chrome Security Team (Inferno).
  • [58319] Low Prevent excessive file dialogs, possibly leading to browser crash. Credit to Cezary Tomczak (gosu.pl).
  • [$500] [59554] High Use after free in history handling. Credit to Stefan Troger.
  • [Linux / Mac] [59817] Medium Make sure the “dangerous file types” list is uptodate with the Windows platforms. Credit to Billy Rios of the Google Security Team.
  • [61701] Low Browser crash with HTTP proxy authentication. Credit to Mohammed Bouhlel.
  • [61653] Medium Out-of-bounds read regression in WebM video support. Credit to Google Chrome Security Team (Chris Evans), based on earlier testcases from Mozilla and Microsoft (MSVR).
  • [$1000] [62127] High Crash due to bad indexing with malformed video. Credit to miaubiz.
  • [62168] Medium Possible browser memory corruption via malicious privileged extension. Credit to kuzzcc.
  • [$1000] [62401] High Use after free with SVG animations. Credit to Sławomir Błażek.
  • [$500] [63051] Medium Use after free in mouse dragging event handling. Credit to kuzzcc.
  • [$1000] [63444] High Double free in XPath handling. Credit to Yang Dingning from NCNIPC, Graduate University of Chinese Academy of Sciences.

New in version 9.0.597.0 Alpha (December 2nd, 2010)

  • Ongoing work on IndexDB and GPU
  • Tweaks/Fixes to Google Chrome Instant
  • Extensions/Apps work
  • Autofill related fixes

New in version 8.0.552.208 Beta (November 19th, 2010)

  • This release contains a number of stability and UI improvements.

New in version 9.0.587.0 Alpha (November 19th, 2010)

  • GPU Related Fixes
  • Crash Fixes
  • Instant Fixes
  • [r65953] Move click-to-play to about:flags. (Issue: 62091)

New in version 8.0.552.200 Beta (November 12th, 2010)

  • This release contains a number of stability and UI improvements.

New in version 9.0.576.0 Alpha (November 10th, 2010)

  • All:
  • Typing on a form with highlighted profile, keeps its highlighted value. (Issue 58774)
  • Handle selection changes due to AutoFill more carefully. (Issue 58774)
  • Autofill popup labels should reflect the contents of the HTML form. (Issue 58887)
  • Linux:
  • Port SSLClientSocketNSS to use Windows CryptoAPI for SSL client authentication. (Issue 37560)

New in version 9.0.570.1 (November 5th, 2010)

  • This release contains a new version of Flash

New in version 7.0.517.44 (November 4th, 2010)

  • [51602] High Use-after-free in text editing. Credit to David Bloom of the Google Security Team, Google Chrome Security Team (Inferno) and Google Chrome Security Team (Cris Neckar).
  • [$1000] [55257] High Memory corruption with enormous text area. Credit to wushi of team509.
  • [$1000] [58657] High Bad cast with the SVG use element. Credit to the kuzzcc.
  • [$1000] [58731] High Invalid memory read in XPath handling. Credit to Bui Quang Minh from Bkis (www.bkis.com).
  • [$500] [58741] High Use-after-free in text control selections. Credit to “vkouchna”.
  • [$1000] [Linux only] [59320] High Integer overflows in font handling. Credit to Aki Helin of OUSPG.
  • [$1000] [60055] High Memory corruption in libvpx. Credit to Christoph Diehl.
  • [$500] [60238] High Bad use of destroyed frame object. Credit to various developers, including “gundlach”.
  • [$500] [60327] [60769] [61255] High Type confusions with event objects. Credit to “fam.lam” and Google Chrome Security Team (Inferno).
  • [$1000] [60688] High Out-of-bounds array access in SVG handling. Credit to wushi of team509.

New in version 9.0.570.0 (November 3rd, 2010)

  • Fix incorrect border colors in incognito mode. (Issue 52815)
  • Security:
  • Require a user gesture when opening file choose dialog and make sure file choose dialog from invisible windows can not be displayed (Issue 58319)
  • Known Issues:
  • REGRESSION: Windows media player for Firefox doesn't load - Issue 61603
  • Regression:accelerated compositing slows down the whole machine - Issue 61520
  • google.com/wave : "Page Unresponsive" dailog box appears - Issue 61533
  • myspace.com : Cannot enter a character in Comments field - Issue 61513

New in version 8.0.552.23 Alpha (November 1st, 2010)

  • Various fixes for browser sign-in
  • [r64308] Fix importing from Firefox on first run on Mac when it’s the default browser. (Issue 61112)
  • Disable accelerated 2D canvas

New in version 8.0.552.18 Alpha (October 27th, 2010)

  • This release addresses a number of stability and polish issues found in the previous release.

New in version 8.0.552.11 Alpha (October 22nd, 2010)

  • about:labs moved to about:flags
  • New Tab Page cleanup
  • Various Chrome Frame fixes for non-en-US locales

New in version 7.0.517.41 (October 20th, 2010)

  • Hundreds of bug fixes
  • An updated HTML5 parser
  • File API
  • Directory upload via input tag

New in version 7.0.517.36 Beta (October 8th, 2010)

  • The majority of fixes in this release were related to stability and polish. Of particular note, we also landed fixes for NTLM authentication and restored the ability to hide the most visited sites on the new tab page.

New in version 7.0.517.24 Alpha (September 29th, 2010)

  • This release focused on resolving minor bug fixes or crashes.

New in version 7.0.517.17 Alpha (September 27th, 2010)

  • This release focused on resolving minor bug fixes or crashes.

New in version 6.0.472.63 (September 23rd, 2010)

  • This version contains a fix in V8 for direct loading of global function prototypes [V8 r5483].

New in version 6.0.472.62 (September 20th, 2010)

  • High Bad cast with malformed SVG. Credit to wushi of team 509.
  • Critical Buffer mismanagement in the SPDY protocol. Credit to Ron Ten-Hove of Google.
  • High Cross-origin property pollution. Credit to Stefano Di Paola of MindedSecurity.

New in version 7.0.517.8 Alpha (September 17th, 2010)

  • This release focused on resolving minor bug fixes or crashes.

New in version 7.0.517.0 Alpha (September 9th, 2010)

  • about:labs (Issue: 53399)
  • Fewer wstrings in the bookmark code!
  • Problems visiting http://localhost in various network configurations should be resolved (Issues: 42058, 49024, 32522).
  • [r58011] [phajdan.jr@chromium.org] [OS-LINUX] Issue 29333 - use_system_xml causes many sites to fail to load
  • Remove libxml hack that is not needed after we rolled in the WebKit fix (Issue: 29333)
  • [r58449] Fix default browser selection on KDE 4 on many RPM-based distributions. (Issue 33842)

New in version 6.0.472.55 (September 8th, 2010)

  • [r58038] [r58039] Failures when using autocomplete (issue 51727, 52940)
  • [r58106] Default search engine settings wiped out (issue 10913)
  • Shift reload not working (issue 1906)

New in version 6.0.472.53 (September 2nd, 2010)

  • [34414] Low Pop-up blocker bypass with blank frame target. Credit to Google Chrome Security Team (Inferno) and “ironfist99”.
  • [37201] Medium URL bar visual spoofing with homographic sequences. Credit to Chris Weber of Casaba Security.
  • [41654] Medium Apply more restrictions on setting clipboard content. Credit to Brook Novak.
  • [45659] High Stale pointer with SVG filters. Credit to Tavis Ormandy of the Google Security Team.
  • [45876] Medium Possible installed extension enumeration. Credit to Lostmon.
  • [46750] [51846] Low Browser NULL crash with WebSockets. Credit to Google Chrome Security Team (SkyLined), Google Chrome Security Team (Justin Schuh) and Keith Campbell.
  • [$1000] [50386] High Use-after-free in Notifications presenter. Credit to Sergey Glazunov.
  • [50839] High Notification permissions memory corruption. Credit to Michal Zalewski of the Google Security Team and Google Chrome Security Team (SkyLined).
  • [$1337] [51630] [51739] High Integer errors in WebSockets. Credit to Keith Campbell and Google Chrome Security Team (Cris Neckar).
  • [$500] [51653] High Memory corruption with counter nodes. Credit to kuzzcc.
  • [51727] Low Avoid storing excessive autocomplete entries. Credit to Google Chrome Security Team (Inferno).
  • [52443] High Stale pointer in focus handling. Credit to VUPEN Vulnerability Research Team (VUPEN-SR-2010-249).
  • [$1000] [52682] High Sandbox parameter deserialization error. Credit to Ashutosh Mehra and Vineet Batra of the Adobe Reader Sandbox Team.
  • [$500] [53001] Medium Cross-origin image theft. Credit to Isaac Dawson.

New in version 7.0.503.0 Alpha (August 26th, 2010)

  • [r56615] IP addresses typed into the omnibox now work when offline. (Issue: 39830)
  • Many stability fixes

New in version 5.0.375.127 (August 20th, 2010)

  • [$1337] [45400] Critical Memory corruption with file dialog. Credit to Sergey Glazunov.
  • [$500] [49596] High Memory corruption with SVGs. Credit to wushi of team509.
  • [$500] [49628] High Bad cast with text editing. Credit to wushi of team509.
  • [$1000] [49964] High Possible address bar spoofing with history bug. Credit to Mike Taylor.
  • [$2000] [50515] [51835] High Memory corruption in MIME type handling. Credit to Sergey Glazunov.
  • [$1337] [50553] Critical Crash on shutdown due to notifications bug. Credit to Sergey Glazunov.
  • [51146] Medium Stop omnibox autosuggest if the user might be about to type a password. Credit to Robert Hansen.
  • [$1000] [51654] High Memory corruption with Ruby support. Credit to kuzzcc.
  • [$1000] [51670] High Memory corruption with Geolocation support. Credit to kuzzcc.

New in version 6.0.495.0 Alpha (August 18th, 2010)

  • [r55669] Fixed some minor issues with css custom cursor rendering (Issue: 51709)
  • Re-enable the link to disable individual plug-ins in a group. (Issue: 51597)
  • [r55596] Fixed playback rate for WebM/VP8 on certain content. (Issue: 51014)

New in version 6.0.472.36 Beta (August 17th, 2010)

  • All:
  • More UI Polish
  • Stability Fixes
  • [r55562] Re-enable the link to disable individual plug-ins in a group. (Issue: 51597)
  • Chrome Frame:
  • [r55941] Fix Chrome Frame upgrade from old to new beta. (Issue: 51620)

New in version 6.0.490.1 Beta (August 14th, 2010)

  • All:
  • Late binding enabled for SSL sockets: High priority SSL requests are now always sent to the server first.
  • Fixed focus problems with restoring from minimize (Issue 48917)
  • Fixed Cannot add an address properly in the "AutoFill options" dialog box (Issue 50047)
  • Several fixes and checks relating to syncing extensions (Issue 46516, Issue 49346, Issue 46516, Issue 49346, Issue 50567)
  • Click-to-play is now behind the --enable-click-to-play command line switch.
  • Fixed several issues with click-to-play (Issue 49686, Issue 49836)
  • Linux:
  • Fixed broken thumbnail images in new tab window (Issue 48066)

New in version 5.0.375.126 (August 11th, 2010)

  • This version contains an updated version of the Flash plugin.

New in version 6.0.472.25 Alpha (August 9th, 2010)

  • UI Updates
  • Stability Fixes

New in version 6.0.472.22 Alpha (August 5th, 2010)

  • UI Updates
  • Stability Fixes
  • (Issue 49493) Fix some problems with SSL connections through HTTP proxies.

New in version 6.0.472.14 Alpha (August 2nd, 2010)

  • UI tweaks and clean up
  • Additional stability fixes
  • PDF Plugin does not load - Issue 49702

New in version 6.0.472.11 Alpha (July 29th, 2010)

  • UI tweaks and clean up
  • Additional stability fixes

New in version 5.0.375.125 (July 27th, 2010)

  • Security fixes and rewards:
  • Please see the Chromium security page for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix.
  • Aside from the listed security bugs fixed in Chromium, we have also deployed workarounds for two critical vulnerabilities where the root cause lies in external components. Credit and $1337 to Marc Schoenefeld for enabling us to work around a Windows kernel bug [48283]. Credit and $1337 to Simon Berry-Byrne for enabling us to work around a glibc bug [48733].
  • [$500] [42736] Medium Memory contents disclosure in layout code. Credit to Michail Nikolaev.
  • [$500] [43813] High Issue with large canvases. Credit to sp3x of SecurityReason.com.
  • [$500] [47866] High Memory corruption in rendering code. Credit to Jose A. Vazquez.
  • [$500] [48284] High Memory corruption in SVG handling. Credit to Aki Helin of OUSPG.
  • [48597] Low Avoid hostname truncation and incorrect eliding. Credit to Google Chrome Security Team (Inferno).

New in version 6.0.472.0 Alpha (July 22nd, 2010)

  • [r52790] Chromium stops saving files for any large downloads (Issue 49216)
  • [r52693] Fix crash with SSL client auth (Issue 49197)
  • [r52850] Option clicking a link now saves a resource directly without triggering a “Save As...” dialog (Issue 36775)
  • Linux:
  • [r52507] Fixed tab dragging glitches with newer GDEs (Issue 48774)
  • [r52729] Access GNOME Keyring on the main thread to fix a crash for some users (Issue 48343)
  • Known Issues:
  • PDF plugin does not load on Linux (Issue 49702)

New in version 6.0.466.0 Alpha (July 16th, 2010)

  • Late binding enabled for SSL sockets: High priority SSL requests are now always sent to the server first.
  • The extension api “chrome.idle” has moved out of experimental and now has its own permission: “idle”.
  • Flickering favicons on Ubuntu Maverick should be fixed. (There are other graphical glitches, but those also appear in other apps, so that appears to not be our bug.)
  • Content settings window now uses a list instead of tabs.
  • Remove unnecessary MIMEType field from application shortcuts.

New in version 6.0.458.1 Alpha (July 12th, 2010)

  • InfoBar should not be shown when the user first submits a form
. (Issue: 47426)
  • AutoFill should continuously update profile data as the user submits forms with new data
AutoFill: Aggregate profile data. Remove the AutoFill InfoBar. Remove more remnants of shipping address and CVV. (Issue: 47423)
  • When editing a field in a previously auto-filled form, only display unique suggestions
AutoFill: Remove duplicate suggestions when providing suggestions for a field (Issue: 47436)
  • Enabling sync freezes Chromium
Remove NIGORI from the sync routing info. (Issue: 47766)

New in version 6.0.453.1 Alpha (July 9th, 2010)

  • New experimental support for gnome-keyring and kwallet for storing your passwords. Currently off by default; you can opt in via a command line flag and we’d love feedback as to whether it eats your data. Please see this thread for information on how to test it (importantly, back up your passwords first).
  • Fixed overlapping characters sometimes seen with complex (Thai, Indic) text.
  • The PDF plugin is now available (turn it on in about:plugins).

New in version 5.0.375.99 (July 5th, 2010)

  • [42396] Low OOB read with WebGL. Credit to Sergey Glazunov; Google Chrome Security Team (SkyLined).
  • [42575] [42980] Medium Isolate sandboxed iframes more strongly. Credit to sirdarckcat of Google Security Team.
  • [$500] [43488] High Memory corruption with invalid SVGs. Credit to Aki Hekin of OUSPG; wushi of team509.
  • [$500] [44424] High Memory corruption in bidi algorithm. Credit to wushi of team509.
  • [45164] Low Crash with invalid image. Credit to Jose A. Vazquez.
  • [$1000] [45983] High Memory corruption with invalid PNG (libpng bug). Credit to Aki Helin of OUSPG.
  • [$500] [46360] High Memory corruption in CSS style rendering. Credit to wushi of team509.
  • [46575] Low Annoyance with print dialogs. Credit to Mats Ahlgren.
  • [47056] Low Crash with modal dialogs. Credit to Aki Helin of OUSPG.

New in version 5.0.375.86 (June 25th, 2010)

  • [38105] Medium XSS via application/json response (regression). Credit to Ben Davis for original discovery and Emanuele Gentili for regression discovery.
  • [43322] Medium Memory error in video handling. Credit to Mark Dowd under contract to Google Chrome Security Team.
  • [43967] High Subresource displayed in omnibox loading. Credit to Michal Zalewski of Google Security Team.
  • [45267] High Memory error in video handling. Credit to Google Chrome Security Team (Cris Neckar).
  • [$500] [46126] High Stale pointer in x509-user-cert response. Credit to Rodrigo Marcos of SECFORCE.

New in version 5.0.375.86 Beta (June 24th, 2010)

  • The integrated flash player has been re-enabled by default.

New in version 6.0.437.1 Alpha (June 18th, 2010)

  • All:
  • [r49492] Detach Reload from omnibox, combine with Stop, and eliminate Go. (Issue: 45745).
  • [r49712] Implemented initial version of extension syncing. (Issue (with instructions on how to enable): 32413, but see 46742).
  • The onChanged event is now working in the extensions experimental cookies API.
  • Linux:
  • [r49458] Undo experiment where we used the tab theme image as the frame in popup windows. We now always use the default blue frame, matching Windows instead of matching Mac. (Issue: 43938)
  • [r49467] Side tabs for content settings window (Issue: 45546)
  • [r49451] Fix restore button doing nothing in certain circumstances (Issue: 46232)
  • Known Issues:
  • Some images for the main toolbar are wrong (the Stop button is incorrectly squared off on Windows and Linux, and the omnibox edges are wrong on Mac).

New in version 5.0.375.70 (June 9th, 2010)

  • [15766] Medium Cross-origin keystroke redirection. Credit to Michal Zalewski of Google Security Team.
  • [$2000] [39985] High Cross-origin bypass in DOM methods. Credit to Sergey Glazunov.
  • [$500] [42723] High Memory error in table layout. Credit to wushi of team509.
  • [Linux only] [43304] High Linux sandbox escape. Credit to Mark Dowd under contract to Google Chrome Security Team.
  • [43307] High Bitmap stale pointer. Credit to Mark Dowd under contract to Google Chrome Security Team.
  • [43315] High Memory corruption in DOM node normalization. Credit to Mark Dowd under contract to Google Chrome Security Team.
  • [43487] High Memory corruption in text transforms. Credit to wushi of team509.
  • [43902] Medium XSS in innerHTML property of textarea. Credit to sirdarckcat of Google Security Team.
  • [44740] High Memory corruption in font handling. Credit: Apple.
  • [44868] High Geolocation events fire after document deletion. Credit to Google Chrome Security Team (Justin Schuh).
  • [44955] High Memory corruption in rendering of list markers. Credit: Apple.

New in version 5.0.375.70 Beta (June 4th, 2010)

  • Fix some crash and stability issues.

New in version 6.0.422.0 Alpha (June 4th, 2010)

  • VP8/WebM support has been added
  • Crash when changing networks or waking from sleep (Issue: 44724)
  • CUPS “add printer” crashes tab (Issue 30880)

New in version 5.0.375.55 (May 26th, 2010)

  • Security Fixes:
  • Please see the Chromium security page for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix.
  • [7713] Medium Canonicalize URLs closer to the Safe Browsing specification. Credit to Brett Wilson of the Chromium development community.
  • [16535] High Possible URL bar spoofing via unload event handlers. Credit to Michal Zalewski, Google Security Team.
  • [30079] Medium Memory error in Safe Browsing interaction. Credit to Google Chrome Security Team (SkyLined).
  • [39740] Medium Bypass of whitelist-mode plugin blocker. Credit to Darin Fisher of the Chromium development community.
  • [41469] Medium Memory error with drag + drop. Credit to kuzzcc.
  • [42228] High Incorrect execution of Javascript in the extension context. Credit to Andrey Kosyakov of the Chromium development community.
  • In addition, we fixed a range of minor issues such as non-exploitable crashes, hangs and other annoyances. Credit to Sumit Gwalani; Google Security Team, sirdarckcat; Google Security Team, Google Chrome Security Team (Inferno), Carlos Ghan, WHK; elhacker.net, x41, Aki Helin; OUSPG, Jordi Chancel, kuzzcc, Robert Swiecki; Google Security Team, Tavis Ormandy; Google Security Team and Florent; Skyrecon Systems.
  • Also, we would like to extend our thanks to the following people who helped find bugs so we could fix them before they ever affected the stable channel: Robert Swiecki; Google Security Team, Alexey Proskuryakov; Apple, Florian Rienhardt; BSI, and Ben Davis.

New in version 6.0.408.1 Alpha (May 21st, 2010)

  • [r47574] Don't remember incognito zoom changes (Issue: 43107)
  • Fixed various memory related errors

New in version 5.0.375.53 Beta (May 21st, 2010)

  • This release contains some minor crash and stability fixes, in addition, we have also temporarily put our internal version of Flash Player back behind a flag. We plan on re-enabling our internal version of Flash Player by default on the beta channel in the near future.
  • We have also fixed a regression so that we no longer remember incognito zoom changes (Issue: 43107)

New in version 5.0.396.0 Alpha (May 7th, 2010)

  • All:
  • The toolbar, omnibox and other UI changes reverted for Chrome 5 have been restored in this build.
  • Fixed bug related to scheme stripping that could cause URLs of the form "http://ftp.foo.com" to be misnavigated, by not stripping the scheme in this case.
  • Many bugs fixed relating to stripping "http://" and its interaction with the clipboard. Chrome should now prepend schemes onto the pasted text in a variety of situations.
  • Linux:
  • Bookmark bar icons should no longer be cropped under some GTK themes
  • (particularly, the new ones in Ubuntu Lucid).
  • Flash content when using nspluginwrapper should be clickable again.
  • Security:
  • Linux: Fixed a crash caused by a premature application data record in the middle of an SSL handshake (Issue: 42538)
  • Known Issues:
  • Several autofill related issues (Issue 43260, Issue 43262, Issue 43365, Issue 43353, Issue 41573)

New in version 5.0.375.29 Beta (May 6th, 2010)

  • HTML5 Features: Geolocation, App Cache, web sockets, file drag-and-drop.
  • Integrated Flash Player Plugin
  • V8 performance improvements
  • Preferences synchronization
  • NaCl behind a flag

New in version 5.0.375.23 Alpha (April 28th, 2010)

  • Disabled profile based Autofill (this will return in a future release)
  • Various UI features related to the url bar/ omnibox have been removed from this release (e.g. http:// truncation, star icon, etc...)
  • We are currently examining ways to address the usability issues that were raised and plan to reintroduce in the near future
  • Various crash fixes

New in version 5.0.375.3 Alpha (April 14th, 2010)

  • Flash enabled by default
  • Implement patterns for content setting exceptions.
  • A nicer looking video scaling algorithm is now used

New in version 5.0.371.0 Alpha (April 9th, 2010)

  • Geolocation support (Issue 11246 and many others)
  • Fixed bug where HTML5 audio/video elements stopped firing timeupdate events (Issue 25185)
  • WebGL is running inside the sandbox under the --enable-webgl flag (i.e. this no longer requires the --no-sandbox flag to run). Browsing with the --no-sandbox is dangerous and we strongly recommend that you not do it.
  • Changes to the Omnibox (e.g. the bookmark star has moved, icon changes, etc...)
  • After some churn in recent dev channels, we now obey more font settings from fontconfig while still not sacrificing web compatibility. Unhappy about how your fonts look? Read a document about how to diagnose the various issues.

New in version 5.0.342.9 Beta (April 8th, 2010)

  • This update fixes issue 38220: some extensions cannot be installed.

New in version 5.0.360.5 Alpha (March 31st, 2010)

  • An integrated Adobe Flash Player Plug-in. We're integrating Adobe Flash Player 10.1.51.95 (10.1 beta 3) with Google Chrome so that you don't have to install it or worry about keeping it up-to-date. See the blog post on the Chromium blog for more details.
  • To use the bundled Flash Player plug-in, add --enable-internal-flash to your command line or shortcut for starting Google Chrome.
  • A basic plug-in manager. The about:plugins page now lets you disable any plug-in from loading on all web pages. See the Known Issues section: this doesn't work in all cases yet if you already have Adobe Flash Player for Windows Firefox, Safari, or Opera installed.
  • Known Issues:
  • On Windows, if you have Adobe Flash Player for Windows Firefox, Safari, or Opera installed, the Flash plug-in will still work in some cases even if you decline the license agreement (when using --enable-internal-flash) or disable the Flash plugin from about:plugins. We're working on it.
  • If you disable (or enable) a plugin on about:plugins, your change does not take effect until you restart Google Chrome.
  • There is no bundled Adobe Flash Player plug-in for 64-bit Linux.

New in version 5.0.342.7 Beta (March 25th, 2010)

  • Automatic translations and greater control over content for privacy. The Google Chrome 4.1 Beta announcement for Windows explains these features in more detail.
  • Really, really reload. A normal reload causes the browser to check with the server before reusing its cached content. The server can decide whether or not the browser should use its cached content. A force reload causes the browser to ignore its cached content and ask the server for a fresh copy of the page. Use Shift+Reload to force a reload (the reload keyboard shortcut varies by platform).

New in version 5.0.342.3 Alpha (March 12th, 2010)

  • This release improves stability and fixes some known crashers (such as Issues: 37035, 37674, 37567).
  • Known Issues:
  • Linux: Chromium Bookmark Sync Not Working (Issue: 36460).

New in version 5.0.335.0 Alpha (February 25th, 2010)

  • Support "cache-bypassing reload"; this is hooked to various accelerators on different platforms (e.g. shift-reload, ctrl-reload, etc.) (Issue 1906)
  • [r38877, r39018, r39040, r39133, r39346, r39524] Fix numerous issues relating to new Content Settings functionality (Issues 34633, 34668, 35011, 35775, 36021)
  • [r39285] Fix crash when alert() is called from extension popup (Issue 33698)
  • [r39365] When a single tab is open, "Close other tabs" context menu option should be grayed out (Issue 35576)
  • [r39381] Remove all infobars from a tab when its renderer crashes (Issue 36035)
  • [r39412] Fix crash adding/deleting bookmark/folder when browser sync is on and the network is not available (Issue 36200)
  • [r39670] Do not send extra blur and focus events if popup menu is showing (Issue 23499)
  • [r39682] Fix crash when dragging bookmarks (Issue 36473)
  • Fix package dependencies in .deb package (Issue 35639)
  • [r38999] Fix crash with some extensions (Issue 35577)
  • [r39160, r39257] Fix issues relating to new Content Settings functionality (Issues 34941, 35861)
  • [r39250] Fix crash when editing a bookmark in the bookmark manager (Issue 35438)
  • [r39251] Implement the new AutoFill section of the Options dialog (Issue 33025)
  • [r39436] Failing NSS version check should not be a fatal error (Issue 33163)
  • [r39669] Add "deb" and "rpm" to dangerous extension list (Issue 31144)
  • Security:
  • [r39503, r39635] Be more careful about size calculations in GPU code (Issue: 35931)
  • Notable behavior change: every HTML document hosted on a local file:// URI now lives in a unique domain. Old behavior can be re-enabled with the new flag --allow-file-access-from-files. For a cross-browser discussion on background, please see http://blog.chromium.org/2008/12/security-in-depth-local-web-pages.html
  • Known Issues:
  • Mac client SSL certificate support limitations: does not yet support server renegotiation attempts (so it doesn't work with all sites) (Issue 36207); client cert generation (the tag) is not implemented yet (Issue 34607)
  • Mac: Blocked popups can currently not be opened (Issue 35594)

New in version 5.0.307.5 Alpha (February 5th, 2010)

  • Bugs fixed in this release:
  • [r37760] (Mac/Linux) Fix themes being corrupted after upgrade (bad colors, extra wrench menu, etc). (Issue 33416)
  • [r37440] (Mac) Fix a crash when the page is closed or navigates while a popup menu is open. (Issue 33250)
  • [r37445] (Mac) Bookmark manager: restore focus when people press Esc. (Issue 32734)
  • [r37522] (Mac) Bookmark manager: Fix a crash on deleting a folder (Issue 33083)
  • [r37542] (Mac) Fix a crash when plugins are scrolled or multiple plugins frames load (Issue 33467)
  • [r37549] (Mac) Prevent tabs from closing when a popup window is open (Issue 31716)
  • [r37342] (Linux) Fix a browser crash when the network connection is down. (Issue 33091)
  • [r37738] (Mac) Fix a crash when opening a menu while the browser starts. (Issue 33890)
  • [r37838] (Linux) Developer Tools: fix broken autocomplete. (Issue 33403)
  • [r37853] (Mac) Fix cookie management dialog being slow to load (Issue 33248)
  • [r37725] (Linux) Fix App and Edit menus not appearing on pressing Alt+F or Alt+E (Issue 33471)

New in version 5.0.307.1 Alpha (February 3rd, 2010)

  • [r37017] Preliminary desktop notifications support. (Why not libnotify? See our technical FAQ.) (Issue: 23954)
  • [r37193] Use GTK+ selection colors when using GTK theme mode. (Issue: 25831)
  • [r37201] We now also will load plugins from ~/.config/$PRODUCT_NAME/Plugins. (Issue: 22261)
  • Improved complex text support, fixing a number of bugs in Hebrew/Arabic/Hindi/etc. display.