日前，谷歌瀏覽器發(fā)布 v90.0.4430.212 正式版更新，這也是Google Chrome第四個維護(hù)版本，本次更新主要進(jìn)行了安全修復(fù)和穩(wěn)定性改進(jìn)，同時改善用戶體驗，一起來了解一下。

      新版變化

      Chrome v90.0.4430.212 正式版(2021-05-11)

      谷歌瀏覽器v90正式版主要更新，引入了許多以用戶為中心的功能改進(jìn)，輔以安全性方面的進(jìn)一步提升。默認(rèn)向目標(biāo)網(wǎng)站鏈接均啟用SSL安全傳輸協(xié)議(HTTPS)，全新AV1開源視頻編碼器的技術(shù)支持，高清視頻占用大幅減小。新增窗口重命名功能，可重命名已打開的多個窗口，可記住窗口的配置，遇到崩潰重啟會自動恢復(fù)狀態(tài)。還有WebXR深度API、啟用了URL協(xié)議設(shè)置程序、效果疊加層、以及安全性方面的諸多改進(jìn)，比如為了防范緩解NAT Slipstream 2.0攻擊，而屏蔽封鎖了通過554端口的HTTP/HTTPS/FTP服務(wù)器訪問。

      谷歌瀏覽器v89正式版主要更新，修復(fù)了一個零日漏洞，建議用戶盡快更新。優(yōu)化了對WebHID、WebNFC和Web Serial等適用于HID設(shè)備API的支持，此外NFC和串行設(shè)備也被認(rèn)為可以投入生產(chǎn)使用。還初步為WebRTC添加了對AV1編碼的支持。此外桌面端還帶來了Web Share和Web Share Target支持以及其他增強(qiáng)功能。

      谷歌瀏覽器v88正式版主要更新，改進(jìn)深色主題支持，優(yōu)化深色模式，覆蓋設(shè)置、書簽、歷史、新標(biāo)簽頁等更多內(nèi)部頁面的滾動條。停止對FTP的支持，無法使用Chrome作為FTP客戶端，不再支持ftp://開頭的地址。停止對Mac OS Yosemite的支持，結(jié)束對舊版瀏覽器附加組件的支持，減少請求許可干擾，優(yōu)化適用于Chrome OS的淺色和深色模式。

      安全修復(fù)和獎勵

      googlechromereleases.blogspot.com

      Chrome v90.0.4430.212，此更新包括19個安全修復(fù)程序。

      [$3000][1180126] High CVE-2021-30506: Incorrect security UI in Web App Installs. Reported by @retsew0x01 on 2021-02-19

      [$NA][1178202] High CVE-2021-30507: Inappropriate implementation in Offline. Reported by Alison Huffman, Microsoft Browser Vulnerability Research on 2021-02-14

      [$TBD][1195340] High CVE-2021-30508: Heap buffer overflow in Media Feeds. Reported by Leecraso and Guang Gong of 360 Alpha Lab on 2021-04-02

      [$TBD][1196309] High CVE-2021-30509: Out of bounds write in Tab Strip. Reported by David Erceg on 2021-04-06

      [$TBD][1197436] High CVE-2021-30510: Race in Aura. Reported by Weipeng Jiang (@Krace) from Codesafe Team of Legendsec at Qi'anxin Group on 2021-04-09

      [$TBD][1197875] High CVE-2021-30511: Out of bounds read in Tab Groups. Reported by David Erceg on 2021-04-10

      [$TBD][1200019] High CVE-2021-30512: Use after free in Notifications. Reported by ZhanJia Song on 2021-04-17

      [$NA][1200490] High CVE-2021-30513: Type Confusion in V8. Reported by Man Yue Mo of GitHub Security Lab on 2021-04-19

      [$TBD][1200766] High CVE-2021-30514: Use after free in Autofill. Reported by koocola (@alo_cook) and Nan Wang (@eternalsakura13) of 360 Alpha Lab on 2021-04-20

      [$TBD][1201073] High CVE-2021-30515: Use after free in File API. Reported by Rong Jian and Guang Gong of 360 Alpha Lab on 2021-04-21

      [$TBD][1201446] High CVE-2021-30516: Heap buffer overflow in History. Reported by ZhanJia Song on 2021-04-22

      [$TBD][1203122] High CVE-2021-30517: Type Confusion in V8. Reported by laural on 2021-04-27

      [$NA][1203590] High CVE-2021-30518: Heap buffer overflow in Reader Mode. Reported by Jun Kokatsu, Microsoft Browser Vulnerability Research on 2021-04-28

      [$15000][1194058] Medium CVE-2021-30519: Use after free in Payments. Reported by asnine on 2021-03-30

      [$10000][1193362] Medium CVE-2021-30520: Use after free in Tab Strip. Reported by Khalil Zhani on 2021-04-03

      [1207457] Various fixes from internal audits, fuzzing and other initiatives

      想了解更多關(guān)于谷歌瀏覽器精彩資訊，敬請關(guān)注下載之家。