Help+manual Bug Chrome For Mac

Posted on  by

To explore the Safari User Guide, click Table of Contents at the top of the page, or enter a word or phrase in the search field. If you need more help, visit the Safari Support website. A bug in Chrome's browser process; a bug in the Linux kernel; a hardware defect; If you see a freeze, try pressing Alt+Volume Up+X once, with the keys depressed in that order. (If you're using a non-Chrome-OS keyboard, use Alt+F10+X instead.) This will instruct the Linux kernel to attempt to make the Chrome process crash and restart.

  1. Help+manual Bug Chrome For Macbook Pro
  2. Help+manual Bug Chrome For Macbook
  3. Help+manual Bug Chrome For Mac Os

Google has released Chrome 86.0.4240.111 today, October 20th, 2020, to the Stable desktop channel to address five security vulnerabilities, one of them an actively exploited zero-day bug.

'Google is aware of reports that an exploit for CVE-2020-15999 exists in the wild,' the Google Chrome 86.0.4240.111 announcement reads.

Bug

This version is rolling out to the entire userbase during the next days/weeks. Windows, Mac, and Linux desktop users can upgrade to Chrome 86 by going to Settings -> Help -> About Google Chrome.

The Google Chrome web browser will then automatically check for the new update and install it when available.

Freetype zero-day bug under active exploitation

'Project Zero discovered and reported an actively exploited 0day in freetype that was being used to target Chrome,' said Ben Hawkes, technical team lead of Google's 'Project Zero' security research team.

'While we only saw an exploit for Chrome, other users of freetype should adopt the fix discussed here: https://savannah.nongnu.org/bugs/?59308 -- the fix is also in today's stable release of FreeType 2.10.4,' Hawkes added.

The heap buffer overflow zero-day bug found in the popular FreeType text rendering library has been reported by Google Project Zero's Sergei Glazunov on October 19.

According to Glazunov's report, the vulnerability 'exists in the function `Load_SBit_Png`, which processes PNG images embedded into fonts.'

The Load_SBit_Png FreeType function:

1) Obtains the image width and height from the header as 32-bit integers.
2) Truncates the obtained values to 16 bit and stores them in a `TT_SBit_Metrics` structure.
3) Uses the truncated values to calculate the bitmap size.
4) Allocates the backing store of that size.
5) Passes `png_struct` and the backing store to a libpng function.

'The issue is that libpng uses the original 32-bit values, which are saved in `png_struct`,' Glazunov further explained. 'Therefore, if the original width and/or height are greater than 65535, the allocated buffer won't be able to fit the bitmap.'

Full technical details for this actively exploited zero-day vulnerability should be released on Project Zero's issue tracker on October 26.

Help+manual Bug Chrome For Macbook Pro

Four other security flaws addressed

Google also fixed three other high severity security vulnerabilities and a medium severity flaw in Chrome 86.0.4240.111:

• CVE-2020-16000: Inappropriate implementation in Blink (reported by amaebi_jp on September 6)
• CVE-2020-16001: Use after free in media (reported by Khalil Zhani on October 15)
• CVE-2020-16002: Use after free in PDFium (reported by Weipeng Jiang (@Krace) from Codesafe Team of Legendsec at Qi'anxin Group on October 13)
• CVE-2020-16003: Use after free in printing (reported by Khalil Zhani on October 4)

Related Articles:

Google is committed to advancing racial equity for Black communities. See how.

Bug reporting

There are a couple bug trackers relevant to WebRTC:

  • crbug.com -- for Chrome1.
  • bugreporter.apple.com -- for Safari
  • developer.microsoft.com -- for Edge
  • bugzilla.mozilla.org -- for Firefox.
  • bugs.opera.com/wizard -- for Opera.
  • bugs.webrtc.org -- for WebRTC native code.

and they’re continuously triaged by Chrome and WebRTC engineers.

How to File a Good Bug Report

Help+manual bug chrome for mac os

Instructions

Help+manual
  • Identify which bug tracker to use:
    • If you’re hitting a problem in Chrome, file the bug using theBlink>WebRTCcomponent.This can be done after choosing “I am a web developer trying to buildsomething” and “Problems with a browser API” and ensures the right peoplewill look at your bug.
    • If you’re a developer working with the native code, file the bug at thislink.
  • Include as much as possible from the data points listed below.

Example Data Points

  • Version of the browser/app
    • For Chrome: copy/paste from chrome://version
    • For WebRTC native code: if applicable, include the branch (e.g. trunk) andWebRTC revision (e.g. r8207) your application uses
  • Operating system (Windows, Mac, Linux, Android, iOS, etc.) and version (e.g.Windows 7, OS X 10.9, Ubuntu 14, etc.)
  • Hardware platform/device model (e.g. PC, Mac, Samsung 4S, Nexus 7, iPhone 5S,iPad Air 2 etc)
  • Camera and microphone model and version (if applicable)
    • For Chrome audio and video device issues, please run the tests athttps://test.webrtc.org. After the tests finish running, click the bugicon at the top, download the report, and attach the report to the issuetracker.
  • Web site URL
  • Reproduction steps: detailed information on how to reproduce the bug. Ifapplicable, please either attach or link to a minimal test page inHTML+JavaScript.
  • For crashes
    • If you experience a crash while using Chrome, please include a crash ID byfollowing theseinstructions.
    • If you experience a crash while using WebRTC native code, please includethe full stacktrace.
  • For functional issues or ICE issues, in either Chrome or a native application,please gather a native log.
  • For connectivity issues on Chrome, ensure chrome://webrtc-internals is open inanother tab before starting the call and while the call is in progress,
    • expand the Create Dump section,
    • click the Download the PeerConnection updates and stats data button. Youwill be prompted to save the dump to your local machine. Please attachthat dump to the bug report.
  • For audio quality issues on Chrome, while the call is in progress,
    • please open chrome://webrtc-internals in another tab,
    • expand the Create Dump section,
    • fill in the Enable diagnostic audio recordings checkbox. You will beprompted to save the recording to your local machine. After ending thecall, attach the recording to the bug.
  • For echo issues, please try to capture an audio recording from the side thatis generating the echo, not the side that hears the echo. For example, ifUserA and UserB are in a call, and UserA hears herself speak, please obtain anaudio recording from UserB.

Filing a security bug

The WebRTC team takes security very seriously. If you find a vulnerability inWebRTC, please file a Chromium securitybug, even if the bug onlyaffects native WebRTC code and not Chromium.

A history of fixed Chromium security bugs is best found via security notes inStable Channel updates on the Google Chrome releasesblog.

You can also find fixed, publicly visibleType=Bug-Securitybugs in the issue tracker (note: security bugs normally become publicly visible14 weeks after they are fixed). If there is a bug in WebRTC code that Chromiumisn’t using (such as the Java/ObjC wrappers for Android/iOS) we will announcefixes separately ondiscuss-webrtc.

List of all disclosed native-only securitybugs.

Note that we will generally NOT merge security fixes backwards to any branches,so if you’re using older branches it’s your responsibility to make sure therelevant security fixes get merged.

Receiving notifications about security bugs in Chrome

Help+manual Bug Chrome For Macbook

To get automatic notifications about activity/comments in security bugs inChrome you need to be either explicitly cc:d on specific bugs (by someone whohas access to the bug) or be part of a special mailing list for all security bugnotifications. To get on that list you have to apply to the Chrome Securityteam, see more about this on the Chrome Securitypage under “How can I getaccess to Chromium vulnerabilities?” at the bottom of the page.

Please note that Chrome’s security-notify list will receive notifications aboutall security bugs in Chrome and not just the WebRTC ones. Normally it shouldn’tbe a problem to figure out whether an issue affects WebRTC since it will mostlikely be tagged with one of the WebRTC-related components (one of Blink>WebRTC,Blink>GetUserMedia, Blink>MediaStream, Blink>MediaRecording) or their sub-components.

Help+manual Bug Chrome For Mac Os

Also note that access granted by the list will only apply to bugs of Type=Bug-Security. Not all bugs with crashes, memory leaks and other potentialvulnerabilities are marked as Bug-Security though. You can read more about whatcategories of bugs are deemed security bugs in the Severity Guidelines forSecurityIssuesand also on the Security FAQpage.