Forgot your password?

Close
typodupeerror
Google Software Technology

Google Quashes 13 Chrome Bugs, Adds PDF Viewer 177

Posted by timothy
from the next-please-block-cw-popups dept.
CWmike writes "Google on Thursday patched 13 vulnerabilities in Chrome 8 (stable), and debuted Google's built-in PDF viewer, an alternative to the bug-plagued Adobe Reader plug-in, and included support for the still-not-launched Chrome Web Store. The 13 flaws fixed in Chrome 8.0.552.215 are in a variety of components, including the browser's history, its video indexing and the display of SVG (scalable vector graphics) animations. Next up: Adobe and Google have collaborated to put the Flash Player plug-in inside a sandbox within the dev build of Chrome, an effort by the two companies to better protect users from attacks."
This discussion has been archived. No new comments can be posted.

Google Quashes 13 Chrome Bugs, Adds PDF Viewer More

Google Quashes 13 Chrome Bugs, Adds PDF Viewer

Comments Filter:

  • Because I like being on cutting edge... (Score:5, Informative)

    by McNihil (612243) on Friday December 03, 2010 @09:56PM (#34440450)

    Just tested it with chrome 9.x... the pdf rendering is ridiculously fast.

  • Quashes? (Score:1, Informative)

    by Anonymous Coward on Friday December 03, 2010 @10:04PM (#34440516)

    So the bugs subpoenaed Google, and Google asked the judge that the motion of discovery be nullified?

    Or did they mean squashed?

  • Re:Because I like being on cutting edge... (Score:3, Informative)

    by larry bagina (561269) on Friday December 03, 2010 @10:40PM (#34440720) Journal
    Acrobat is slow. Imagine if your computer was unusable for 30 seconds because you accidentally clicked on a pdf link. Acrobat is worse than that.

  • Re:whoop dee doo (Score:5, Informative)

    by onefriedrice (1171917) on Friday December 03, 2010 @10:55PM (#34440790)

    All this enhancement sounds great, but I wish they would concentrate on compatibility with web sites first. There are too many sites that don't work well with Chrome and I am tired of getting warnings from popular sites that warn me about running an unsupported browser.

    Any examples you can come up with, because I have no idea what you're talking about. WebKit is extremely compatible (it's one of the most popular HTML engines out there), and I don't know of any incompatibilities with Chrome's Javascript VM either, so... I guess I'll just have to call BS.

  • Re:Quashes? (Score:3, Informative)

    by Surt (22457) on Friday December 03, 2010 @11:22PM (#34440952) Homepage Journal

    No, they meant quashed and got it right. The legal definition flows from the standard english one.
    http://www.merriam-webster.com/dictionary/quashed?show=0&t=1291432910 [merriam-webster.com]

  • Re:indeed (Score:0, Informative)

    by Anonymous Coward on Friday December 03, 2010 @11:36PM (#34441020)
    not as sweet as a tight wet pussy.

  • Re:Damn. It's all downhill for now. (Score:5, Informative)

    by Anonymous Coward on Friday December 03, 2010 @11:39PM (#34441048)

    about:plugins -> Chrome PDF Viewer -> Disable.

    or

    Options -> Under the Hood -> Content settings -> Plug-ins -> Block all.

    Also it's weird to say a plugin is causing bloat, when the plugin resides in a shared library, it only registers one embed handler, and is entered only when a PDF is viewed. It has zero runtime overhead and its .text section is shared between processes (iirc... loadlibrary on win32 does copy-on-write).

  • Re:Damn. It's all downhill for now. (Score:5, Informative)

    by Anonymous Coward on Saturday December 04, 2010 @01:12AM (#34441452)

    Hello monoculture software. Hello exploits.

    We embedded a viewer so that we could sandbox it. This makes exploits much harder to pull off. If you do manage to get a user to open a PDF that exploits a bug, the sandbox ensures that the process you now control is unable to access the filesystem or open network connections, and will be killed if it tries.

    99% of users don't know what a plugin is, and won't keep them up to date unless the process is totally automatic. Chrome got this right: Updates are silently downloaded and applied unless you go out of your way to disabling them. Making the PDF plugin a part of Chrome allows chrome updates to update the plugin. Chrome's track record fixing security bugs fast is far better than the record of the PDF plugin that virtually all Windows users most user have.

    If you don't want to use the fast, small, sandboxed PDF viewer that gets security updates, go to about:plugins and click disable. Nothing stops you from using other plugin if you want to.

  • Re:PDF viewer (Score:4, Informative)

    by The_mad_linguist (1019680) on Saturday December 04, 2010 @01:34AM (#34441558)

    It's terrible for anything with diagrams or formulas.

  • Re:Where's the bug? (Score:4, Informative)

    by pclminion (145572) on Saturday December 04, 2010 @01:42AM (#34441604)

    If I were to guess, it would be due to the two buffers X windows uses

    How does that explain the fact that I had to manually type in the above quote, and I'm running Windows 7?

    It's fucking ridiculous, it happens with no other site but this one, and the fact that Slashdot has done nothing to fix it in the past MONTH that it's been going on, is absolutely incomprehensible to me. What. The. Fuck. Find the problem and fix it.

    Even if it's somehow a bug in Chrome, I laugh out loud at the prospect of switching away from my preferred browser because one site on the Internet can't be assed to worked around the problem. I'd rather abandon Slashdot than abandon Chrome, and that's saying something.

  • PDF for Chromium? (Score:2, Informative)

    by david.given (6740) <dg AT cowlark DOT com> on Saturday December 04, 2010 @08:52AM (#34442786) Homepage Journal
    I'll admit to not being terribly interested in PDF for niche OSs like Windows --- although on the few occasions I have to boot Windows I admit that I find myself actively enjoying not loading Acrobat Reader --- so I'm more interested in whether PDF viewing is available for Chromium yet. PDFs are hateful, but sometimes I have to read the damned things, and even apps like evince are cumbersome and slow. Chrome's inline PDF viewer is awesome, fast and slick and best of all, largely invisible; PDFs just work, without needing to faff around with downloads and spawning external apps. It doesn't make PDFs any less hateful but it does minimise the pain.

    But inline PDF doesn't seem to be available for Linux, and there's very little information about why. I have heard rumours that the PDF code isn't open source. It would be really nice if there was some communication on this...

  • Re:PDF for Chromium? (Score:4, Informative)

    by Qzukk (229616) on Saturday December 04, 2010 @09:28AM (#34442890) Journal

    The reason is that the PDF support is actually Foxit reader being distributed as a plugin.

  • Re:Crome still disappoints me... (Score:4, Informative)

    by Xarius (691264) on Saturday December 04, 2010 @10:20AM (#34443098) Homepage

    Go to about:flags and enable the Print Preview option.

FORCE YOURSELF TO RELAX!

Close