MyCERT Advisories, Alerts and Summaries for the year 2017
MA-667.062017: MyCERT Advisory – Google Releases Security Update for Chrome
Date first published: 20/6/2017
Google has released Chrome version 59.0.3071.104 for Windows, Mac, and Linux.
This version addresses multiple vulnerabilities that, including one that an attacker could exploit to cause a denial-of-service condition. Table below listed 3 out of 5 vulnerabilities which have been fixed:
|CVE-2017-5087||Sandbox Escape in IndexedDB.||High|
|CVE-2017-5088||Out of bounds read in V8.||High|
|CVE-2017-5089||Domain spoofing in Omnibox.||Medium|
3.0 Affected Products
Listed below are the affected products:
- Google Chrome for Windows, Mac and Linux.
Users are recommended to upgrade to Google Chrome 59.0.3071.104. The latest Google Chrome can be downloaded from this URL:
• Windows users: https://www.google.com/chrome/browser/?platform=win
• Linux users: https://www.google.com/chrome/browser/?platform=linux
• Mac users: https://www.google.com/chrome/browser/?platform=mac
Generally, MyCERT advises the users of this software to be updated with the latest security announcements by the vendor and follow best practice security policies to determine which updates should be applied.
For further enquiries, please contact MyCERT through the following channels:
Phone: 1-300-88-2999 (monitored during business hours)
Fax: +603 89453442
Mobile: +60 19 2665850 (24x7 call incident reporting)
SMS: CYBER999 REPORT EMAIL COMPLAINT to 15888
Business Hours: Mon - Fri 09:00 AM - 18:00 PM MYT