The Chrome team is excited to announce the promotion of Chrome 24 to the stable channel. Chrome 24.0.1312.52 has been updated for Windows, Mac, Linux, and Chrome Frame.

This is the first Stable release with support for MathML, thanks to WebKit volunteer Dave Barton. This release also contains an update to Flash (11.5.31.137) as well as improvements in speed and stability. You can find out more about Chrome 24 on the Official Chrome Blog and the Official Chromium Blog.

Security fixes and rewards:

Please see the Chromium security page for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix.

• [$1000] [162494] High CVE-2012-5145: Use-after-free in SVG layout. Credit to Atte Kettunen of OUSPG. 
• [$4000] [165622] High CVE-2012-5146: Same origin policy bypass with malformed URL. Credit to Erling A Ellingsen and Subodh Iyengar, both of Facebook. 
• [$1000] [165864] High CVE-2012-5147: Use-after-free in DOM handling. Credit to José A. Vázquez. 
• [167122] Medium CVE-2012-5148: Missing filename sanitization in hyphenation support. Credit to Google Chrome Security Team (Justin Schuh). 
• [166795] High CVE-2012-5149: Integer overflow in audio IPC handling. Credit to Google Chrome Security Team (Chris Evans). 
• [165601] High CVE-2012-5150: Use-after-free when seeking video. Credit to Google Chrome Security Team (Inferno). 
• [165538] High CVE-2012-5151: Integer overflow in PDF JavaScript. Credit to Mateusz Jurczyk, with contribution from Gynvael Coldwind, both of Google Security Team. 
• [165430] Medium CVE-2012-5152: Out-of-bounds read when seeking video. Credit to Google Chrome Security Team (Inferno). 
• [164565] High CVE-2012-5153: Out-of-bounds stack access in v8. Credit to Andreas Rossberg of the Chromium development community. 
• [Windows only] [164490] Low CVE-2012-5154: Integer overflow in shared memory allocation. Credit to Google Chrome Security Team (Chris Evans). 
• [Mac only] [163208] Medium CVE-2012-5155: Missing Mac sandbox for worker processes. Credit to Google Chrome Security Team (Julien Tinnes). 
• [162778] High CVE-2012-5156: Use-after-free in PDF fields. Credit to Mateusz Jurczyk, with contribution from Gynvael Coldwind, both of Google Security Team. 
• [162776] [162156] Medium CVE-2012-5157: Out-of-bounds reads in PDF image handling. Credit to Mateusz Jurczyk, with contribution from Gynvael Coldwind, both of Google Security Team. 
• [162153] High CVE-2013-0828: Bad cast in PDF root handling. Credit to Mateusz Jurczyk, with contribution from Gynvael Coldwind, both of Google Security Team. 
• [162114] High CVE-2013-0829: Corruption of database metadata leading to incorrect file access. Credit to Google Chrome Security Team (Jüri Aedla). 
• [Windows only] [162066] Low CVE-2013-0830: Missing NUL termination in IPC. Credit to Google Chrome Security Team (Justin Schuh). 
• [161836] Low CVE-2013-0831: Possible path traversal from extension process. Credit to Google Chrome Security Team (Tom Sepez). 
• [160380] Medium CVE-2013-0832: Use-after-free with printing. Credit to Google Chrome Security Team (Cris Neckar). 
• [154485] Medium CVE-2013-0833: Out-of-bounds read with printing. Credit to Google Chrome Security Team (Cris Neckar). 
• [154283] Medium CVE-2013-0834: Out-of-bounds read with glyph handling. Credit to Google Chrome Security Team (Cris Neckar). 
• [152921] Low CVE-2013-0835: Browser crash with geolocation. Credit to Arthur Gerkis. 
• [150545] High CVE-2013-0836: Crash in v8 garbage collection. Credit to Google Chrome Security Team (Cris Neckar). 
• [145363] Medium CVE-2013-0837: Crash in extension tab handling. Credit to Tom Nielsen. 
• [Linux only] [143859] Low CVE-2013-0838: Tighten permissions on shared memory segments. Credit to Google Chrome Security Team (Chris Palmer). 

Many of the above bugs were detected using AddressSanitizer.

The security issues in V8 have been fixed in v8-3.14.5.3.

We’d also like to thank Atte Kettunen and Sławomir Błażek for working with us during the development cycle and preventing security regressions from ever reaching the stable channel. Rewards were issued.

The Dev channel has been updated to 25.1364.26 (Platform version: 3428.49.0) for all Chrome OS devices. This build contains a number of stability fixes and feature enhancements.

Some highlights of these changes are:

• Fixes to several recent bugs in Google Docs 
• Audio is now working for spoken feedback 
• Several fixes related to multi-monitor extended desktop display (163812, 35796) 
• Fix to some pages' scrolling jumping to the top of the page (166943) 
• Several crash fixes 

Known Issues:

• In some situations, Chrome Sync may not sync any data. Workaround: Restart system and perform sync again. (167090) 
• The login screen when resuming from a locked state may be off-center. (167215) 

The Dev channel has been updated to 25.0.1364.26 for Windows, Mac, Linux, and Chrome Frame. This update contains additional stability fixes. A full list of changes in this build is available in the SVN revision log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.
 

The Dev channel has been updated to 25.1364.2 (Platform version: 3428.0.0) for all Chrome OS devices. This build contains a number of stability fixes and feature enhancements.

Some highlights of these changes are:

• Encrypted Media Extensions are enabled by default 
• Updated the 32bit Netflix plugin to 2.0.8 which fixes video corruption seen on some videos.
• Fixed several crashes

Known Issues:

• In a user’s first login session, going to ‘Report an issue...’ can cause the Chrome browser to hang. (166988)
• Audio is not heard when spoken accessibility feedback is enabled (37391)

The Dev channel has been updated to 25.0.1364.5 for Windows, Mac, Linux, and Chrome Frame. This update contains stability and memory fixes. A full list of changes in this build is available in the SVN revision log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.

Chrome for iPhone and iPad has been updated to Chrome 23.0.1271.100. This release fixes issues with playing audio in the browser. You can get the update via the App Store, or from the prompt inside of Chrome. Known issues are available on the Chrome support site. If you find a new issue, please let us know by filing a bug.

The Stable channel has been updated to 23.0.1271.110 (Platform version: 2913.276.0) for Samsung Series 5 and Acer C7 Chromebooks. Machines will receive this update over the next several days.

The Dev channel has been updated to 25.0.1364.2 for Windows, Mac, Linux, and Chrome Frame. This update contains additional stability fixes. A full list of changes in this build is available in the SVN revision log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.
 

The Beta and Stable channel has been updated to 23.0.1271.110 (Platform version: 2913.270.0) for Samsung Chromebook Series 5 550 and Samsung Series 3 Chromebox. Machines will be receiving update over the next several days.

The Stable channel has been updated to 23.0.1271.101 for the Mac platform. This build contains the fix to a bug with sound distortion with microphone input: 157613. If you find a new issue, please let us know by filing a bug.

The Chrome OS Management Console in the administrator control panel has been updated. This update brings new user policies including:

• Screenshot
• Allow external devices, such as Secure Digital (SD) cards and USB Flash drives
• Audio input
• Audio output

Known issues are available here. Enterprise customers can report an issue by contacting support.

The Dev channel has been updated to 25.0.1359.3 for Windows, Mac, Linux, and Chrome Frame. This update contains a number of stability fixes. A full list of changes in this build is available in the SVN revision log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.

The Stable channel has been updated to 23.0.1271.97 for Windows, Mac, Linux, and ChromeFrame platforms. This build contains the following fixes: