Google 㯠Web ãã©ãŠã¶ Chrome 102 ã®ãªãªãŒã¹ãçºè¡šããåæã« Chrome ã®åºç€ãšãªãç¡æã® Chromium ãããžã§ã¯ãã®å®å®çãªãªãŒã¹ãå©çšå¯èœã«ãªããŸããã Chrome ãã©ãŠã¶ã¯ãGoogle ããŽã®äœ¿çšãã¯ã©ãã·ã¥æã«éç¥ãéä¿¡ããã·ã¹ãã ã®ååšãã³ããŒä¿è·ããããã㪠ã³ã³ãã³ã (DRM) ãåçããã¢ãžã¥ãŒã«ãã¢ããããŒããèªåçã«ã€ã³ã¹ããŒã«ããã·ã¹ãã ããµã³ãããã¯ã¹åé¢ãæ°žç¶çã«æå¹ã«ããç¹ã§ Chromium ãšã¯ç°ãªããŸãã ãGoogle API ã«ããŒãæäŸããæ€çŽ¢æã« RLZ- ãã©ã¡ãŒã¿ãéä¿¡ããŸãã æŽæ°ã«ããã«æéãå¿ èŠãªå Žåã¯ãExtended Stable ãã©ã³ããå¥éãµããŒãããããã®åŸ 8 é±éãµããŒããããŸãã Chrome 103 ã®æ¬¡åãªãªãŒã¹ã¯ 21 æ XNUMX æ¥ã«äºå®ãããŠããŸãã
Chrome 102 ã®äž»ãªå€æŽç¹:
- ãã§ã«è§£æŸãããã¡ã¢ãª ãããã¯ãžã®ã¢ã¯ã»ã¹ (解æŸåŸã®äœ¿çš) ã«ãã£ãŠåŒãèµ·ããããè匱æ§ã®æªçšããããã¯ããããã«ãéåžžã®ãã€ã³ã¿ãŒã®ä»£ããã«ãMiraclePtr (raw_ptr) ã¿ã€ãã䜿çšããå§ããŸããã MiraclePtr ã¯ã解æŸãããã¡ã¢ãªé åãžã®ã¢ã¯ã»ã¹ã«å¯ŸããŠè¿œå ã®ãã§ãã¯ãå®è¡ãããã®ãããªã¢ã¯ã»ã¹ãæ€åºãããå Žåã«ã¯ã©ãã·ã¥ãããã€ã³ã¿ãŒã«å¯Ÿãããã€ã³ãã£ã³ã°ãæäŸããŸãã æ°ããä¿è·æ¹æ³ãããã©ãŒãã³ã¹ãšã¡ã¢ãªæ¶è²»ã«åãŒã圱é¿ã¯ããããããã§ãããšè©äŸ¡ãããŠããŸãã MiraclePtr ã¡ã«ããºã ã¯ãã¹ãŠã®ããã»ã¹ã«é©çšã§ããããã§ã¯ãããŸãããç¹ã«ã¬ã³ããªã³ã° ããã»ã¹ã§ã¯äœ¿çšãããŸããããã»ãã¥ãªãã£ãå€§å¹ ã«åäžãããããšãã§ããŸãã ããšãã°ãçŸåšã®ãªãªãŒã¹ã§ã¯ãä¿®æ£ããã 32 件ã®è匱æ§ã®ãã¡ã12 件ã¯è§£æŸåŸã®äœ¿çšã®åé¡ãåå ã§ããã
- ããŠã³ããŒãã«é¢ããæ
å ±ã衚瀺ããã€ã³ã¿ãŒãã§ãŒã¹ã®ãã¶ã€ã³ãå€æŽãããŸããã ããŠã³ããŒãã®é²è¡ç¶æ³ã«é¢ããããŒã¿ã衚瀺ããæäžè¡ã®ä»£ããã«ãã¢ãã¬ã¹ ããŒã®ããããã«ã«æ°ããã€ã³ãžã±ãŒã¿ãŒãè¿œå ãããŸããããããã¯ãªãã¯ãããšããã¡ã€ã«ã®ããŠã³ããŒãã®é²è¡ç¶æ³ãšãããŠã³ããŒãæžã¿ã®ãã¡ã€ã«ã®ãªã¹ããå«ãå±¥æŽã衚瀺ãããŸãã äžéšããã«ãšã¯ç°ãªãããã¿ã³ã¯åžžã«ããã«ã«è¡šç€ºãããŠãããããŠã³ããŒãå±¥æŽã«ããã«ã¢ã¯ã»ã¹ã§ããŸãã æ°ããã€ã³ã¿ãŒãã§ã€ã¹ã¯çŸåšãããã©ã«ãã§äžéšã®ãŠãŒã¶ãŒã«ã®ã¿æäŸãããŠããŸãããåé¡ããªããã°ãã¹ãŠã®ãŠãŒã¶ãŒã«æ¡åŒµãããäºå®ã§ãã å€ãã€ã³ã¿ãŒãã§ãŒã¹ã«æ»ãããæ°ããã€ã³ã¿ãŒãã§ãŒã¹ãæå¹ã«ããããã«ããchrome://flags#download-bubbleãèšå®ãæäŸãããŠããŸãã
- ã³ã³ããã¹ã ã¡ãã¥ãŒ (ãGoogle ã¬ã³ãºã§ç»åãæ€çŽ¢ããŸãã¯ãGoogle ã¬ã³ãºã§æ€çŽ¢ã) ãéããŠç»åãæ€çŽ¢ãããšãçµæãå¥ã®ããŒãžã§ã¯ãªããå
ã®ããŒãžã®ã³ã³ãã³ãã®é£ã®ãµã€ãããŒã«è¡šç€ºãããããã«ãªããŸããã XNUMX ã€ã®ãŠã£ã³ããŠã§ãããŒãžã®ã³ã³ãã³ããšæ€çŽ¢ãšã³ãžã³ãžã®ã¢ã¯ã»ã¹çµæã®äž¡æ¹ãåæã«ç¢ºèªã§ããŸã)ã
- èšå®ã®ããã©ã€ãã·ãŒãšã»ãã¥ãªãã£ãã»ã¯ã·ã§ã³ã«ããã©ã€ãã·ãŒ ã¬ã€ããã»ã¯ã·ã§ã³ãè¿œå ããããã©ã€ãã·ãŒã«åœ±é¿ãäžããäž»ãªèšå®ã®æŠèŠãšåèšå®ã®åœ±é¿ã®è©³çŽ°ãªèª¬æãæäŸãããŸãã ããšãã°ããã®ã»ã¯ã·ã§ã³ã§ã¯ãGoogle ãµãŒãã¹ãžã®ããŒã¿éä¿¡ã®ããªã·ãŒãå®çŸ©ããããåæãCookie åŠçãå±¥æŽä¿åã管çãããã§ããŸãã ãã®æ©èœã¯äžéšã®ãŠãŒã¶ãŒã«æäŸãããŠãããæå¹ã«ããã«ã¯ãchrome://flags#privacy-guideãã®èšå®ã䜿çšããŸãã
- æ€çŽ¢å±¥æŽãšé²èŠ§ããããŒãžã®æ§é åãæäŸãããŸãã å床æ€çŽ¢ãè¡ããšãã¢ãã¬ã¹ããŒã«ãæ
ãåéããããšãããã³ãã衚瀺ãããååäžæããå Žæããæ€çŽ¢ãç¶ããããšãã§ããŸãã
- Chrome ãŠã§ãã¹ãã¢ã§ã¯ãæšå¥šãããã¢ããªã³ã®åæã»ã¬ã¯ã·ã§ã³ãå«ããæ¡åŒµæ©èœã¹ã¿ãŒã¿ãŒ ããããããŒãžãæäŸããŠããŸãã
- ãã¹ã ã¢ãŒãã§ã¯ãããŒãžãå
éšãããã¯ãŒã¯äžã®ãªãœãŒã¹ã«ã¢ã¯ã»ã¹ãããšãã«ãããããŒãAccess-Control-Request-Private-Network: trueãã䜿çšããŠã¡ã€ã³ ãµã€ã ãµãŒããŒã« CORS (Cross-Origin Resource Sharing) æ¿èªãªã¯ãšã¹ããéä¿¡ããããšãæå¹ã«ãªããŸã ( 192.168.xx ã10.xxxã172.16.xx) ãŸãã¯ããŒã«ã«ãã¹ã (128.xxx) ã«éä¿¡ããŸãã ãã®ãªã¯ãšã¹ãã«å¯Ÿããåäœã確èªããå ŽåããµãŒããŒã¯ãAccess-Control-Allow-Private-Network: trueãããããŒãè¿ãå¿
èŠããããŸãã Chrome ããŒãžã§ã³ 102 ã§ã¯ã確èªçµæã¯ãªã¯ãšã¹ãã®åŠçã«ãŸã 圱é¿ããŸããã確èªããªãå ŽåãWeb ã³ã³ãœãŒã«ã«èŠåã衚瀺ãããŸããããµããªãœãŒã¹ ãªã¯ãšã¹ãèªäœã¯ãããã¯ãããŸããã ãµãŒããŒããã®ç¢ºèªããªãå Žåã«ãããã¯ãæå¹ã«ããããšã¯ãChrome 105 ã®ãªãªãŒã¹ãŸã§ã¯æ³å®ãããŠããŸããã以åã®ãªãªãŒã¹ã§ãããã¯ãæå¹ã«ããã«ã¯ãèšå®ãchrome://flags/#private-network-access- respect-preflight-ããæå¹ã«ããããšãã§ããŸããçµæ"ã
ãµãŒããŒã«ããæš©éã®æ€èšŒã¯ããµã€ããéããšãã«èªã¿èŸŒãŸããã¹ã¯ãªããã«ãããããŒã«ã« ãããã¯ãŒã¯ãŸãã¯ãŠãŒã¶ãŒã®ã³ã³ãã¥ãŒã¿ãŒ (localhost) äžã®ãªãœãŒã¹ãžã®ã¢ã¯ã»ã¹ã«é¢é£ããæ»æã«å¯Ÿããä¿è·ã匷åããããã«å°å ¥ãããŸããã ãã®ãããªãªã¯ãšã¹ãã¯ãã«ãŒã¿ãŒãã¢ã¯ã»ã¹ ãã€ã³ããããªã³ã¿ãŒãäŒæ¥ Web ã€ã³ã¿ãŒãã§ã€ã¹ãããã³ããŒã«ã« ãããã¯ãŒã¯ããã®ã¿ãªã¯ãšã¹ããåãå ¥ãããã®ä»ã®ããã€ã¹ããµãŒãã¹ã«å¯Ÿã㊠CSRF æ»æãå®è¡ããããã«æ»æè ã«ãã£ãŠäœ¿çšãããŸãã ãã®ãããªæ»æããä¿è·ããããã«ãå éšãããã¯ãŒã¯äžã®ãµããªãœãŒã¹ã«ã¢ã¯ã»ã¹ãããšããã©ãŠã¶ã¯ãããã®ãµããªãœãŒã¹ãããŒãããèš±å¯ãæ±ããæ瀺çãªãªã¯ãšã¹ããéä¿¡ããŸãã
- ã³ã³ããã¹ã ã¡ãã¥ãŒããã·ãŒã¯ã¬ãã ã¢ãŒãã§ãªã³ã¯ãéããšããã©ã€ãã·ãŒã«åœ±é¿ããäžéšã®ãã©ã¡ãŒã¿ã URL ããèªåçã«åé€ãããŸãã
- Windows ãš Android ã®æŽæ°é ä¿¡æŠç¥ãå€æŽãããŸããã æ°ãããªãªãŒã¹ãšå€ããªãªãŒã¹ã®åäœãããå®å šã«æ¯èŒããããã«ãæ°ããããŒãžã§ã³ã®è€æ°ã®ãã«ããããŠã³ããŒãçšã«çæãããããã«ãªããŸããã
- ãããã¯ãŒã¯ ã»ã°ã¡ã³ããŒã·ã§ã³ ãã¯ãããžã¯ãæ å ±ã®æ°žç¶çãªä¿åãç®çãšããŠããªãé å (ãã¹ãŒããŒã¯ãããŒã) ã«èå¥åãä¿åããããšã«åºã¥ããŠããµã€ãéã®ãŠãŒã¶ãŒã®ç§»åã远跡ããæ¹æ³ããä¿è·ããããã«å®å®åãããŸããã ãã£ãã·ã¥ããããªãœãŒã¹ã¯ãå ã®ãã¡ã€ã³ã«é¢ä¿ãªããå ±éã®åå空éã«ä¿åãããããããããµã€ãã¯ããã®ãªãœãŒã¹ããã£ãã·ã¥å ã«ãããã©ããã確èªããããšã§ãå¥ã®ãµã€ãããªãœãŒã¹ãèªã¿èŸŒãã§ããããšãå€æã§ããŸãã ãã®ä¿è·ã¯ããããã¯ãŒã¯ ã»ã°ã¡ã³ããŒã·ã§ã³ (ãããã¯ãŒã¯ ããŒãã£ã·ã§ãã³ã°) ã®äœ¿çšã«åºã¥ããŠããŸãããã®æ¬è³ªã¯ãã¡ã€ã³ ããŒãžãéããããã¡ã€ã³ãžã®ã¬ã³ãŒãã®è¿œå ãã€ã³ãã£ã³ã°ãå ±æãã£ãã·ã¥ã«è¿œå ããããšã§ããããã«ããã移å远跡ã¹ã¯ãªããã®ã¿ã®ãã£ãã·ã¥ ã«ãã¬ããžãå¶éãããŸããçŸåšã®ãµã€ãã«ã³ããŒããŸã (iframe ããã®ã¹ã¯ãªããã§ã¯ããªãœãŒã¹ãå¥ã®ãµã€ãããããŠã³ããŒãããããã©ããã確èªã§ããŸãã)ã ç¶æ å ±æã«ã¯ããããã¯ãŒã¯æ¥ç¶ (HTTP/1ãHTTP/2ãHTTP/3ãWebSocket)ãDNS ãã£ãã·ã¥ãALPN/HTTP2ãTLS/HTTP3 ããŒã¿ãæ§æãããŠã³ããŒããããã³ Expect-CT ããããŒæ å ±ãå«ãŸããŸãã
- ã€ã³ã¹ããŒã«ãããã¹ã¿ã³ãã¢ãã³ Web ã¢ããªã±ãŒã·ã§ã³ (PWAãããã°ã¬ãã·ã Web ã¢ããª) ã®å ŽåãWeb ã¢ããªã±ãŒã·ã§ã³ã®ç»é¢é åããŠã£ã³ããŠå
šäœã«æ¡åŒµãããŠã£ã³ã㊠ã³ã³ãããŒã« ãªãŒããŒã¬ã€ ã³ã³ããŒãã³ãã䜿çšããŠããŠã£ã³ã㊠ã¿ã€ãã«é åã®ãã¶ã€ã³ãå€æŽããããšãã§ããŸãã Web ã¢ããªã±ãŒã·ã§ã³ã¯ãæšæºã®ãŠã£ã³ã㊠ã³ã³ãããŒã« ãã¿ã³ (éãããæå°åãæ倧å) ãåãããªãŒããŒã¬ã€ ãããã¯ãé€ããŠã£ã³ããŠå
šäœã®ã¬ã³ããªã³ã°ãšå
¥ååŠçãå¶åŸ¡ããŠãWeb ã¢ããªã±ãŒã·ã§ã³ã«éåžžã®ãã¹ã¯ããã ã¢ããªã±ãŒã·ã§ã³ã®å€èŠ³ãäžããããšãã§ããŸãã
- ãã©ãŒã èªåå ¥åã·ã¹ãã ã§ã¯ããªã³ã©ã€ã³ ã¹ãã¢ã®ååã®æ¯æã詳现ãå«ããã£ãŒã«ãã§ä»®æ³ã¯ã¬ãžãã ã«ãŒãçªå·ãçæããããã®ãµããŒããè¿œå ãããŸããã æ¯æãããšã«çªå·ãçæãããä»®æ³ã«ãŒãã䜿çšãããšãå®éã®ã¯ã¬ãžãã ã«ãŒãã«é¢ããããŒã¿ã転éããå¿ èŠããªããªããŸãããéè¡ã«ããå¿ èŠãªãµãŒãã¹ã®æäŸãå¿ èŠã«ãªããŸãã ãã®æ©èœã¯çŸåšãç±³åœã®éè¡é¡§å®¢ã®ã¿ãå©çšã§ããŸãã ãã®æ©èœã®çµã¿èŸŒã¿ãå¶åŸ¡ããããã«ããchrome://flags/#autofill-enable-virtual-cardãèšå®ãææ¡ãããŠããŸãã
- ããã£ãã㣠ãã³ãã«ãã¡ã«ããºã ã¯ããã©ã«ãã§æå¹ã«ãªã£ãŠããããããªããã£ããã£ããã¢ããªã±ãŒã·ã§ã³ã«æ å ±ã転éã§ããããã«ãªããŸãã API ã䜿çšãããšãã³ã³ãã³ããèšé²ãããã¢ããªã±ãŒã·ã§ã³ãšèšé²ãå®è¡ããã¢ããªã±ãŒã·ã§ã³éã®å¯Ÿè©±ãæŽçããããšãã§ããŸãã ããšãã°ããã¬ãŒã³ããŒã·ã§ã³ããããŒããã£ã¹ãããããã«ãããªããã£ããã£ããŠãããããªäŒè°ã¢ããªã±ãŒã·ã§ã³ã¯ããã¬ãŒã³ããŒã·ã§ã³ ã³ã³ãããŒã«ã«é¢ããæ å ±ãååŸãããã㪠ãŠã£ã³ããŠã«è¡šç€ºã§ããŸãã
- ææ©çã«ãŒã«ã®ãµããŒãã¯ããã©ã«ãã§æå¹ã«ãªã£ãŠããããŠãŒã¶ãŒããªã³ã¯ãã¯ãªãã¯ããåã«ãªã³ã¯é¢é£ããŒã¿ãããã¢ã¯ãã£ãã«ããŒãã§ãããã©ããã決å®ããããã®æè»ãªæ§æãæäŸãããŸãã
- ãªãœãŒã¹ã Web ãã³ãã«åœ¢åŒã®ããã±ãŒãžã«ããã±ãŒãžåããã¡ã«ããºã ãå®å®ããå€æ°ã®ä»éãã¡ã€ã« (CSS ã¹ã¿ã€ã«ãJavaScriptãç»åãiframe) ã®ããŒãå¹çãåäžããŸããã Webpack 圢åŒã®ããã±ãŒãžãšã¯ç°ãªããWeb ãã³ãã«åœ¢åŒã«ã¯æ¬¡ã®å©ç¹ããããŸããHTTP ãã£ãã·ã¥ã«æ ŒçŽãããã®ã¯ããã±ãŒãžèªäœã§ã¯ãªãããã®ã³ã³ããŒãã³ãéšåã§ãã JavaScript ã®ã³ã³ãã€ã«ãšå®è¡ã¯ãããã±ãŒãžãå®å šã«ããŠã³ããŒããããã®ãåŸ ããã«éå§ãããŸãã CSS ãç»åãªã©ã®è¿œå ãªãœãŒã¹ãå«ããããšãã§ããŸãããWebpack ã§ã¯ JavaScript æååã®åœ¢åŒã§ãšã³ã³ãŒãããå¿ èŠããããŸãã
- PWA ã¢ããªã±ãŒã·ã§ã³ãç¹å®ã® MIME ã¿ã€ãããã³ãã¡ã€ã«æ¡åŒµåã®ãã³ãã©ãŒãšããŠå®çŸ©ããããšãã§ããŸãã ãããã§ã¹ãã® file_handlers ãã£ãŒã«ããéããŠãã€ã³ãã£ã³ã°ãå®çŸ©ããåŸããŠãŒã¶ãŒãã¢ããªã±ãŒã·ã§ã³ã«é¢é£ä»ãããããã¡ã€ã«ãéãããšãããšãã¢ããªã±ãŒã·ã§ã³ã¯ç¹å¥ãªã€ãã³ããåãåããŸãã
- DOM ããªãŒã®äžéšããéã¢ã¯ãã£ãããšããŠããŒã¯ã§ããæ°ããäžæŽ»æ§å±æ§ãè¿œå ãããŸããã ãã®ç¶æ ã® DOM ããŒãã®å Žåãããã¹ãéžæãã³ãã©ãŒãšãã€ã³ã¿ãŒ ãã㌠ãã³ãã©ãŒã¯ç¡å¹ã«ãªããŸããã€ãŸãã ãã€ã³ã¿ãŒã€ãã³ããšãŠãŒã¶ãŒéžæã® CSS ããããã£ã¯åžžã«ãnoneãã«èšå®ãããŸãã ããŒããç·šéã§ããå ŽåãäžæŽ»æ§ã¢ãŒãã§ã¯ç·šéã§ããªããªããŸãã
- Navigation API ãè¿œå ãããŸãããããã«ãããWeb ã¢ããªã±ãŒã·ã§ã³ã¯ãŠã£ã³ã㊠ããã²ãŒã·ã§ã³æäœãã€ã³ã¿ãŒã»ããããããã²ãŒã·ã§ã³ãéå§ããã¢ããªã±ãŒã·ã§ã³ã§ã®ã¢ã¯ã·ã§ã³ã®å±¥æŽãåæã§ããããã«ãªããŸãã ãã® API ã¯ãã·ã³ã°ã«ããŒãž Web ã¢ããªã±ãŒã·ã§ã³çšã«æé©åããããwindow.history ããããã£ãš window.location ããããã£ã®ä»£æ¿æ段ãæäŸããŸãã
- æ°ãããã©ã°ãuntil-foundãããhiddenãå±æ§ã«å¯ŸããŠææ¡ãããŠããŸããããã«ãããèŠçŽ ãããŒãžäžã§æ€çŽ¢å¯èœã«ãªããããã¹ã ãã¹ã¯ã«ãã£ãŠã¹ã¯ããŒã«å¯èœã«ãªããŸãã ããšãã°ãããŒãžã«é ãããã¹ããè¿œå ãããšããã®å 容ãããŒã«ã«æ€çŽ¢ã§èŠã€ããããã«ãªããŸãã
- HID ããã€ã¹ (ãã¥ãŒãã³ ã€ã³ã¿ãŒãã§ã€ã¹ ããã€ã¹ãããŒããŒããããŠã¹ãã²ãŒã ããããã¿ããããã) ãžã®äœã¬ãã«ã®ã¢ã¯ã»ã¹ãšãã·ã¹ãã å ã«ç¹å®ã®ãã©ã€ããŒãååšããªããŠãäœæ¥ãæŽçã§ããããã«èšèšããã WebHID API ã§ã¯ã exclusionFilters ããããã£ã requestDevice( ) ãªããžã§ã¯ãã䜿çšãããšããã©ãŠã¶ãŒã䜿çšå¯èœãªããã€ã¹ã®ãªã¹ãã衚瀺ãããšãã«ãç¹å®ã®ããã€ã¹ãé€å€ã§ããŸãã ããšãã°ãæ¢ç¥ã®åé¡ãããããã€ã¹ ID ãé€å€ã§ããŸãã
- æ瀺çãªãŠãŒã¶ãŒã¢ã¯ã·ã§ã³ (ãã³ãã©ãŒã«é¢é£ä»ããããèŠçŽ ãã¯ãªãã¯ãããªã©) ã䌎ããã«ãPaymentRequest.show() ã®åŒã³åºããéããŠæ¯æããã©ãŒã ã衚瀺ããããšã¯çŠæ¢ãããŠããŸãã
- WebRTC ã§ã»ãã·ã§ã³ã確ç«ããããã«äœ¿çšããã SDP (ã»ãã·ã§ã³èšè¿°ãããã³ã«) ãããã³ã«ã®ä»£æ¿å®è£ ã®ãµããŒãã¯äžæ¢ãããŸããã Chrome ã«ã¯ãä»ã®ãã©ãŠã¶ãšçµ±åããããã®ãš Chrome åºæã® XNUMX ã€ã® SDP ãªãã·ã§ã³ãçšæãããŠããŸããã ä»åŸã¯ãããŒã¿ãã«ã®ãªãã·ã§ã³ã®ã¿ãæ®ããŸãã
- Web éçºè
åãã®ããŒã«ãæ¹åãããŸããã ããŒã¯ããŒããšã©ã€ãããŒãã®äœ¿çšãã·ãã¥ã¬ãŒããããã¿ã³ãã¹ã¿ã€ã«ããã«ã«è¿œå ããŸããã ãããã¯ãŒã¯æ€æ»ã¢ãŒãã® [ãã¬ãã¥ãŒ] ã¿ãã®ä¿è·ã匷åãããŸãã (ã³ã³ãã³ã ã»ãã¥ãªã㣠ããªã·ãŒã®é©çšãæå¹ã«ãªããŸã)ã ãããã¬ãŒã¯ããã¬ãŒã¯ãã€ã³ããåããŒãããããã«ã¹ã¯ãªããã®çµäºãå®è£
ããŸãã æ°ãããããã©ãŒãã³ã¹åæãããã«ã®æ«å®å®è£
ãææ¡ãããŠãããããã«ããããŒãžäžã®ç¹å®ã®æäœã®ããã©ãŒãã³ã¹ãåæã§ããããã«ãªããŸãã
æè¡é©æ°ãšãã°ä¿®æ£ã«å ããŠãæ°ããããŒãžã§ã³ã§ã¯ 32 件ã®è匱æ§ãæé€ãããŠããŸãã è匱æ§ã®å€ãã¯ãAddressSanitizerãMemorySanitizerãControl Flow IntegrityãLibFuzzerãããã³ AFL ããŒã«ã䜿çšããèªåãã¹ãã®çµæãšããŠç¹å®ãããŸããã åé¡ã® 2022 〠(CVE-1853-XNUMX) ã«ã¯é倧ãªå±éºã¬ãã«ãå²ãåœãŠãããŠããŸããããã¯ãããããã¬ãã«ã®ãã©ãŠã¶ãŒä¿è·ããã€ãã¹ãããµã³ãããã¯ã¹ç°å¢å€ã®ã·ã¹ãã äžã§ã³ãŒããå®è¡ããå¯èœæ§ãæå³ããŸãã ãã®è匱æ§ã®è©³çŽ°ã¯ãŸã æããã«ãããŠããŸããããIndexed DB API å®è£ ã§è§£æŸãããã¡ã¢ãª ããã㯠(use-after-free) ã«ã¢ã¯ã»ã¹ããããšã«ãã£ãŠåŒãèµ·ããããããšã ããããã£ãŠããŸãã
çŸåšã®ãªãªãŒã¹ã®è匱æ§çºèŠã«å¯Ÿããè³éããã°ã©ã ã®äžç°ãšããŠãGoogle 㯠24 ãã«çžåœã® 65600 件ã®è³ãæ¯æã£ã (10000 ãã«ã®è³ã 7500 件ã7000 ãã«ã®è³ã 5000 件ã3000 ãã«ã®è³ã 2000 件ã1000 ãã«ã®è³ã 500 件ã7 ãã«ã®è³ã XNUMX 件ãXNUMX ãã«ã®è³ã XNUMX 件ãXNUMX ãã«ã®è³ã XNUMX 件ãããã³ XNUMX 件ã®è³) XNUMXãã«ã®ããŒãã¹ïŒã XNUMXã€ã®å ±é
¬ã®èŠæš¡ã¯ãŸã 決å®ãããŠããŸããã
åºæïŒ ãªãŒãã³ããã.ru