It claimed that the patch, named CVE-2009-1441, would mean that a failure to properly validate input from a renderer (tab) process could allow an attacker to crash the browser and possibly run arbitrary code with the privileges of the logged on user. To exploit this vulnerability, an attacker would need to be able to run arbitrary code inside the renderer process. Google has rated this vulnerability as critical. A vulnerability was also patched that would allow an attacker to be able to run arbitrary code within the Google Chrome sandbox. This vulnerability has been rated as high, as a victim would need to visit a page under an attacker's control, and any code that an attacker might be able to run inside the renderer process would be inside the sandbox.
Google to patch vulnerabilities in Chrome
Google Chrome's Stable channel has been updated to version 1.0.154.64 to fix two security issues that were discovered by internal Google testing.
Got a news tip for our journalists? Share it with us anonymously here.
Partner Content
.png&h=140&w=231&c=1&s=0)
Partner Content
Elastic's Open Source Strategy Drives Innovation and Expansion
Unlock SMB Success with Microsoft Copilot
Partner Content
ElasticON Sydney 2025: Deriving value from your data with Search AI
Partner Content
AI Supercharged: How Search is Powering the Future
Sponsored Whitepapers
See everything. Do more.
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Diamond IT Delivers GRC Transformation with Microsoft Purview
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy
.png&w=120&c=1&s=0)
EDUtech AU
.png&w=120&c=1&s=0)
Security Exhibition & Conference 2025
Integrate Expo 2025
Digital As Usual Cybersecurity Roadshow: Brisbane edition
iTnews Benchmark Security Awards 2025
.jpg&h=140&w=231&c=1&s=0)
.jpg&h=140&w=231&c=1&s=0)
