Welcome Guest Search | Active Topics | Sign In | Register

Chrome 89 - Code Execution Vulnerability Options
hmireault
Posted: Wednesday, April 14, 2021 2:19:31 PM
Rank: Advanced Member
Groups: Member

Joined: 7/14/2014
Posts: 52
Hello,

News came out recently about a code execution vulnerability in Google Chrome that was fixed with their update to Google Chrome 89. Here is a link for information: https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop.html

I was wondering if this vulnerability also affects the EO.WebBrowser since it's based on Chromium. If it does, do you have an idea when this will be fixed?

Best regards.
eo_support
Posted: Thursday, April 15, 2021 10:53:33 AM
Rank: Administration
Groups: Administration

Joined: 5/27/2007
Posts: 24,217
Hi,

We regularly sync our code to Chromium's codebase. Right now the details of the vulnerability (including the code that fixes it) is not publicly available yet, so we won't be able to apply it yet. Not publishing the technical detail of the vulnerability right away is the standard practice to avoid the vulnerability being widely exploited. So the first step is for us to wait for the details to be published. Then depends on the severity of the issue, we may port the fix into our codebase, or if we are near the next refresh, we will refresh the entire codebase thus inherits the fix.

Thanks!
hmireault
Posted: Friday, April 16, 2021 8:16:58 AM
Rank: Advanced Member
Groups: Member

Joined: 7/14/2014
Posts: 52
Thanks a lot for the reply. We'll look forward to the updates.

Regards.


You cannot post new topics in this forum.
You cannot reply to topics in this forum.
You cannot delete your posts in this forum.
You cannot edit your posts in this forum.
You cannot create polls in this forum.
You cannot vote in polls in this forum.