ProHoster > Блог > labaran intanet > Muhimman Raunuka 5 a Chrome: Kimanta Hanyoyin Gano Ɓoyayyun Chrome

Muhimman Raunuka 5 a Chrome: Kimanta Hanyoyin Gano Ɓoyayyun Chrome

Google ya fitar da sabuntawar Chrome 147.0.7727.101, wanda ke gyara raunin 31, biyar daga cikinsu an kimanta su da mahimmanci. Waɗannan matsalolin masu mahimmanci suna ba da damar ketare dukkan matakan tsaro na burauza da aiwatar da lambar a wajen yanayin sandbox. Duk da cewa ba a sami cikakkun bayanai ba tukuna, an san raunin yana faruwa ne sakamakon wuce gona da iri a cikin layin ANGLE (fassarar kiran OpenGL ES zuwa wasu APIs na zane-zane) da ɗakin karatu na Skia (yin zane-zane na 2D), da kuma damar shiga kyauta a cikin injin Prerender, abubuwan XR, da aiwatar da abubuwan Proxy.

Bugu da ƙari, yana da kyau a lura da nazarin raunin Chrome ga hanyoyin gano ɓoye daban-daban waɗanda ke ba da damar ƙirƙirar masu gano burauza ba tare da wata matsala ba bisa ga fasalulluka na kai tsaye kamar:

  • ƙudurin allo,
  • jerin nau'ikan MIME da aka tallafa,
  • takamaiman sigogi a cikin kanun labarai na HTTP/2 da HTTP/3,
  • nazarin fonts da aka shigar,
  • samuwar wasu API na Yanar Gizo,
  • nazarin tarihin bincike,
  • fasalulluka na musamman na zane-zane ta amfani da WebGL, WebGPU, da Canvas,
  • bambance-bambance a cikin aiwatar da hanyoyin sarrafa sauti a cikin AudioContex API da kuma gane magana ta hanyar SpeechSynthesis API,
  • ɗigon ruwa na gida IP ta hanyar WebRTC,
  • nazarin abun da ke ciki da kuma tsarin jerin tsawaita TLS,
  • Fasali na fassara Emoji,
  • bayyana shimfidu na madannai,
  • kasancewar na'urori na musamman da na'urori masu auna sigina marasa ƙarfi (gamepads, belun kunne na gaskiya na kama-da-wane, na'urori masu auna kusanci),
  • bambance-bambance a cikin daidaita firikwensin ta hanyar Generic Sensor API,
  • gano na'urorin Bluetooth, USB da HID ta hanyar hanyar getDevices(),
  • fasalulluka na ayyukan lissafi (misali, Math.tan(-1e308)),
  • Kimanta tsarin launi da bayanan sarrafa launi ta hanyar ƙa'idar CSS @supports,
  • ɗaurewa zuwa aikin tsarin ta hanyar API na Aiki,
  • gano ƙarin da aka shigar ta hanyar ƙididdige chrome-extension://[known-id]/[resource],
  • Sarrafa CSS,
  • Binciken siffofin aiki tare da linzamin kwamfuta da madannai.

An lura cewa Chrome ba shi da wata hanyar kariya da aka gina a ciki daga ɓoyen sawun yatsa, kuma an kawar da shirye-shiryen inganta sirri da ake da su a baya, kamar Sandbox na Sirri da Kasafin Kuɗin Sirri. Baya ga bayanin gabaɗaya game da hanyoyin ɓoyen sawun yatsa na Chrome, an nuna yadda za a toshe su a matakin faɗaɗa mai bincike ta amfani da rubutun sarrafa abun ciki, damar gyara kurakurai (chrome.debugger), da kuma nazarin buƙatun hanyar sadarwa (chrome.webRequest). An kuma tattauna hanyoyin adana abubuwan ganowa a wuraren da ba a yi niyya don adanawa mai ɗorewa ba (misali, supercookies, favicon cache, fom autofill database).

source: budenet.ru

Sayi amintaccen masauki don shafuka tare da kariyar DDoS, sabar VPS VDS 🔥 Sayi ingantaccen masaukin yanar gizo tare da kariyar DDoS, sabar VPS VDS | ProHoster