Slashdot Mirror

← Back to Stories (view on slashdot.org)

Chromium 37 Launches With Major Security Fixes, 64-bit Windows Support

Posted by Unknown on from the almost-makes-up-for-<dialog> dept.

An anonymous reader writes Google has released Chrome/Chromium version 37 for Windows, Mac, and Linux. Among the changes are better-looking fonts on Windows and a revamped password manager. There are 50 security fixes, including several to patch a sandbox escaping vulnerability. The release also brings stable 64-bit Windows support which ...offers many benefits for speed, stability and security. Our measurements have shown that the native 64-bit version of Chrome has improved speed on many of our graphics and media benchmarks. For example, the VP9 codec that’s used in High Definition YouTube videos shows a 15% improvement in decoding performance. Stability measurements from people opted into our Canary, Dev and Beta 64-bit channels confirm that 64-bit rendering engines are almost twice as stable as 32-bit engines when handling typical web content. Finally, on 64-bit, our defense in depth security mitigations such as Partition Alloc are able to far more effectively defend against vulnerabilities that rely on controlling the memory layout of objects. The full changelog.

9 of 113 comments (clear)

  1. Hello, it is 2014 by qbast · · Score: 4, Insightful

    Why even bother with 32 bit builds?

    1. Re:Hello, it is 2014 by wisnoskij · · Score: 3, Insightful

      Even well into Windows 7, 32-bit continued to a very serious market share of NEW installs. At this point I do not think we are getting very many 32 bit installs at all, but any computer over 3 years probably has about a 60% chance of running a 32-bit OS. XP was the market overlord of a very long time, and continues to have a significant share, and its 64 bit edition was unusable.

      --
      Troll is not a replacement for I disagree.
  2. Re: Why not a master password for the PW manager? by Anonymous Coward · · Score: 4, Funny

    I think it would be nice if Chrome stored all your passwords and especially your certs (like SMIME and PGP keys) on one of Google's servers. That way you'd have them any time and anywhere you want. Google could provide encryption and provide a key escrow service to that encryption so that, if you lose your master password, Google can recover your passwords for you. With Google's safety features, nothing could possibly go wrong.

  3. Video decoding regression by kav2k · · Score: 3, Informative

    > For example, the VP9 codec that’s used in High Definition YouTube videos shows a 15% improvement in decoding performance.

    Except that with this version, hardware-accelerated decoding broke scaling, so it now seems to scale as nearest-neighbor. Thankfully, on Windows it's possible to override hardware decoding with chrome://flags, which is a workaround for now.

  4. Re:Why not a master password for the PW manager? by The+MAZZTer · · Score: 3, Informative

    Chrome already encrypts your data (on Windows at least) using your Windows login credentials using the Crypto API. If the user is not logged in, the passwords are impossible to read. If the user is logged in, all it takes is an API call run by that user to decrypt them, no reauthentication necessary (and this is why you lock your PC when you walk away). I think it is a very usable solution to the "but I save passwords to avoid remembering passwords, I don't want a master password" problem, but still keeping things secure.

    I think cookies are encrypted now, too.

  5. Re:Sweet by Anonymous Coward · · Score: 3, Funny

    I'm sure the Brony community can provide an equine themed build to your liking.

  6. Chromium 37? by OolimPhon · · Score: 5, Funny

    I thought this was a story about an isotope...

  7. Re:Does it self-update to 64-bit? by jones_supa · · Score: 3, Informative

    It is a separate download at https://www.google.com/intl/en/chrome/browser/?platform=win64.

  8. Just being honest here... by Anonymous Coward · · Score: 5, Insightful

    but I cannot fathom how people, and techies specifically, trust a browser that has ties to the company that does nothing but track people for the sake of profit. I just cannot wrap my head around why people willingly are not fighting the trading of privacy for something "free". We all know the tradeoff isn't fair. Free this and free that and we are giving our lives away for what really?

    I similarly distrust supermarket loyaly cards, which purport to save you money, but track and sell your preferences to third-party vendors who are also in the game for nothing but profit. One of the things that scares me is the buyers included in these companies are insurance companies, both medical and other, who then proceed to find ways to make your policies more expensive in future based on your current lifestyle. This is starting to happen.

    My life is private and what I do should not cause an increase in costs for me. The goal, after all, is socialised medicine anyway, so screw for-profit medical companies.