Google closes 10 holes in Chrome 6
Google's update to Chrome 6.0.472.59 for Windows, Mac OS X and Linux fixes a total of 10 vulnerabilities, six of which the developers rate as "high" priority, and one as "critical". The stable & beta channel versions should automatically install the new update in the background.
The critical hole apparently only affects the Mac version; further details of the vulnerability are being withheld until "a majority of users are up-to-date with the fix". Two of the flaws (Khmer language support and cursor control) only affect the Linux version.
Chrome is also vulnerable to the Flash Player hole disclosed last Tuesday, because the browser contains the plug-in and activates it by default. Until Adobe releases an update, the only workaround is to disable the plug-in (disable Shockwave Flash 10.1 under about:plugins).
Chrome 6.0.472.59 is available to download for Windows, Mac OS X and Linux from google.com/chrome. Users who wish to update sooner than the auto-update system's checking can use the built-in update function by clicking Tools, selecting About Google Chrome and clicking the Update button. All users are encouraged to update to the latest release as soon as possible.
- Google Chrome turns version 6 on its second birthday, a report from The H.