Rank: Advanced Member Groups: Member
Joined: 7/14/2014 Posts: 52
|
Hello, News came out recently about a code execution vulnerability in Google Chrome that was fixed with their update to Google Chrome 89. Here is a link for information: https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop.htmlI was wondering if this vulnerability also affects the EO.WebBrowser since it's based on Chromium. If it does, do you have an idea when this will be fixed? Best regards.
|
Rank: Administration Groups: Administration
Joined: 5/27/2007 Posts: 24,217
|
Hi,
We regularly sync our code to Chromium's codebase. Right now the details of the vulnerability (including the code that fixes it) is not publicly available yet, so we won't be able to apply it yet. Not publishing the technical detail of the vulnerability right away is the standard practice to avoid the vulnerability being widely exploited. So the first step is for us to wait for the details to be published. Then depends on the severity of the issue, we may port the fix into our codebase, or if we are near the next refresh, we will refresh the entire codebase thus inherits the fix.
Thanks!
|
Rank: Advanced Member Groups: Member
Joined: 7/14/2014 Posts: 52
|
Thanks a lot for the reply. We'll look forward to the updates.
Regards.
|