Google has released a new version of its Chrome browser, which includes a fix for a serious buffer overflow vulnerability. The vulnerability in Chrome lies in the way that the browser handles certain responses from HTTP servers.
Version 220.127.116.11 of Chrome is available now, although Google is not releasing any further details of the buffer overflow vulnerability until most of the Chrome user population has downloaded the new version. The vulnerability could enable a remote attacker to run arbitrary code with the privileges of the current user. Chrome users who have the automatic update functionality turned on should have the new version pushed to them.
This is the second time in two weeks that Google has had to push out a new version to address security vulnerabilities. On June 9 the company released version 18.104.22.168, which fixed two vulnerabilities in the open-source WebKit browser framework, which was developed by Apple.