ProHoster > Blog > litaba tsa inthanete > Phatlalatso ea Chrome 103

Phatlalatso ea Chrome 103

Google e senotse ho lokolloa ha sebatli sa marang-rang sa Chrome 103. Ka nako e ts'oanang, ho lokolloa ho tsitsitseng ha morero oa mahala oa Chromium, o sebetsang e le motheo oa Chrome, o fumaneha. Sebatli sa Chrome se fapana le Chromium ts'ebelisong ea li-logos tsa Google, boteng ba sistimi ea ho romella litsebiso haeba ho ka ba le ts'okelo, li-module tsa ho bapala litaba tsa video tse sirelelitsoeng (DRM), sistimi ea ho kenya liapdeite ka bo eona, e nolofalletsang ho itšehla thajana ka ho sa feleng. , ho fana ka linotlolo ho Google API le ho fetisetsa RLZ- ha u batla. Bakeng sa ba hlokang nako e eketsehileng ea ho ntlafatsa, lekala la Extended Stable le tšehetsoa ka thōko, le lateloa ke libeke tse 8. Phallo e latelang ea Chrome 104 e reriloe ka la 2 Phato.

Liphetoho tsa bohlokoa ho Chrome 103:

  • E kentse mohlophisi oa litšoantšo oa liteko o bitselitsoeng ho fetola linepe tsa leqephe. Mohlophisi o fana ka mesebetsi e kang ho lema, ho khetha sebaka, ho penta ka borashe, ho khetha 'mala, ho eketsa mangolo, le ho hlahisa libopeho tse tloaelehileng le li-primitives tse kang mela, likhutlo li tharo, li-circles le metsu. Ho nolofalletsa mohlophisi, o tlameha ho kenya li-setting "chrome://flags/#sharing-desktop-screenshots" le "chrome://flags/#sharing-desktop-screenshots-edit". Kamora ho theha skrini ka har'a menu ea Share ka har'a bareng ea aterese, u ka ea ho mohlophisi ka ho tobetsa konopo ea "Edita" leqepheng la ponelopele ea skrini.
    Phatlalatso ea Chrome 103
  • Bokhoni ba mochini o kentsoeng ho Chrome 101 bakeng sa ho fana ka litaba tsa likhothaletso ho Omnibox bareng ea aterese bo ekelitsoe. Phetolelo ea pele e tlatselletsa bokhoni bo neng bo le teng ba ho kenya likhothaletso tseo ho ka etsahalang hore li tsamaisoe ntle le ho emela motho a tobetse. Ntle le ho kenya, litaba tsa maqephe a amanang le likhothaletso joale li ka hlahisoa ka "buffer" (ho kenyeletsoa script execution le sefate sa DOM. formation), e lumellang pontšo ea hang-hang ea likhothaletso ka mor'a ho tobetsa . Ho laola tlhahiso ea pele, litlhophiso “chrome://flags/#enable-prerender2”, “chrome://flags/#omnibox-trigger-for-prerender2” le “chrome://flags/#search-suggestion-for -” lia khothaletsoa. ​​prerender2".

    Chrome 103 bakeng sa Android e eketsa API ea Melao ea Litlhahiso, e lumellang bangoli ba sebaka sa marang-rang ho bolella sebatli hore na ke maqephe afe ao mosebelisi a ka a etelang. Sebatli se sebelisa lintlha tsena ho kenya le ho fana ka litaba tsa leqephe.

  • Mofuta oa Android o na le molaoli o mocha oa password o fanang ka boiphihlelo bo tšoanang ba taolo ea li-password bo fumanehang lits'ebetsong tsa Android.
  • Mofuta oa Android o kentse tšehetso bakeng sa ts'ebeletso ea "With Google", e lumellang mosebelisi ho leboha libaka tseo a li ratang tse ngolisitseng ts'ebeletso ka ho fetisetsa listikara tsa dijithale tse lefelloang kapa tsa mahala. Tšebeletso ha joale e fumaneha feela ho basebelisi ba US.
    Phatlalatso ea Chrome 103
  • Mokhoa o ntlafalitsoeng oa ho tlatsa libaka ka linomoro tsa likarete tsa ho patala le tsa mekitlane, tseo hona joale li tšehetsang likarete tse bolokiloeng ka Google Pay.
  • Mofuta oa Windows o sebelisa moreki oa DNS o hahelletsoeng ka boiketsetso, o sebelisoang le liphetolelong tsa macOS, Android le Chrome OS.
  • The Local Font Access API e tsitsitse mme e fuoa motho e mong le e mong, eo ka eona u ka hlalosang le ho sebelisa liforomo tse kentsoeng tsamaisong, hammoho le ho laola liforomo boemong bo tlaase (mohlala, sefa le ho fetola li-glyphs).
  • Ts'ehetso e ekelitsoeng bakeng sa khoutu ea karabelo ea HTTP 103, e u lumellang hore u tsebise moreki ka litaba tsa lihlooho tse ling tsa HTTP hang ka mor'a kopo, ntle le ho emela seva ho phethela lits'ebetso tsohle tse amanang le kopo le ho qala ho sebeletsa litaba. Ka mokhoa o ts'oanang, o ka fana ka malebela mabapi le likarolo tse amanang le leqephe le ntseng le fanoa tse ka jarolloang esale pele (mohlala, lihokelo tsa css le javascript tse sebelisitsoeng leqepheng li ka fanoa). Ha sebatli se se se fumane leseli mabapi le lisebelisoa tse joalo, sebatli se ka qala ho li khoasolla ntle le ho emela hore leqephe le ka sehloohong le qete ho fana, e leng ho fokotsang nako eohle ea ho etsa kopo.
  • Ka mokhoa oa liteko tsa Origin (likarolo tsa liteko tse hlokang ts'ebetso e arohaneng), tlhahlobo ea Federated Credential Management (FedCM) API e se e qalile feela likopanong tsa sethala sa Android, se u lumellang hore u thehe lits'ebeletso tse kopaneng tsa boitsebiso tse netefatsang boinotši le mosebetsi ntle le ho feta. -mekhoa ea ho latela sebaka, joalo ka ts'ebetso ea Li-cookie tsa motho oa boraro. Teko ea Origin e bolela bokhoni ba ho sebetsa le API e boletsoeng ho tsoa lits'ebetsong tse jarollotsoeng ho tsoa ho localhost kapa 127.0.0.1, kapa ka mor'a ho ngolisa le ho amohela token e khethehileng e sebetsang ka nako e lekanyelitsoeng bakeng sa sebaka se itseng.
  • Client Hints API, e ntseng e ntlafatsoa e le sebaka sa sehlooho sa Moemeli-Mosebelisi 'me e u lumella ho fana ka lintlha tse mabapi le sebatli se ikhethileng le liparamente tsa sistimi (phetolelo, sethala, joalo-joalo) feela kamora kopo ea seva, e kentse bokhoni ba ho kenya mabitso a iqapetsoeng lethathamong la li-browser tse khethollang, ho latela lipapiso le mochini oa GREASE (Generate Random Extensions And Sustain Extensibility) o sebelisoang ho TLS. Ka mohlala, ho phaella ho "Chrome"; v="103"' le '"Chromium"; v=»103″' sekhetho se sa reroang sa sebatli se seng se le teng ''(Che; Sebatli"; v=»12″' se ka eketsoa lethathamong. Phapang e joalo e tla thusa ho tseba mathata a ho sebetsana le li-identifiers tsa libatli tse sa tsejoeng, e leng se lebisang 'neteng ea hore libatli tse ling li qobelloa ho iketsa libatli tse ling tse tsebahalang hore li se ke tsa sheba khahlano le manane a libatli tse amohelehang.
  • Lifaele tsa sebopeho sa setšoantšo sa AVIF li kentsoe lethathamong la ho arolelana ho lumelletsoeng ka iWeb Share API.
  • Ts'ehetso e ekelitsoeng bakeng sa sebopeho sa "deflate-raw" sa compression, se lumellang ho fihlella molatsoana o hatelitsoeng ntle le lihlooho le li-block tsa ho qetela tsa litšebeletso, tse ka sebelisoang, mohlala, ho bala le ho ngola lifaele tsa zip.
  • Bakeng sa likarolo tsa foromo ea tepo, hoa khoneha ho sebelisa tšobotsi ea "rel", e u lumellang hore u sebelise paramethara ea "rel=noreferrer" ho tsamaea ka liforomo tsa webo ho thibela phetiso ea sehlooho sa Referer kapa "rel=noopener" ho tima maemo. thepa ea Window.opener le ho hana ho fihlella maemo ao phetoho e entsoeng ho ona.
  • Ts'ebetsong ea ketsahalo ea popstate e tsamaellana le boits'oaro ba Firefox. Ketsahalo ea popstate e se e lelekoa hang ka mor'a hore URL e fetohe, ntle le ho emela hore ketsahalo ea mojaro e etsahale.
  • Bakeng sa maqephe a butsoeng ntle le HTTPS le ho li-blocks tsa iframe, ho kena ho Gampepad API le Battery Status API ha ho lumelloe.
  • Mokhoa oa lebala () o kentsoe nthong ea SerialPort ho fana ka tumello e neng e filoe mosebelisi pele ho fihlella boema-kepe ba serial.
  • Sebopeho sa lebokose la pono se kenyellelitsoe thepa ea CSS ea overflow-clip-margin, e khethollang hore na u ka qala ho fokotsa litaba tse fetang moeling oa sebaka seo (e ka nka boleng ba lebokose-lebokose, lebokose la padding le moeli- lebokose).
  • Ho li-block tsa iframe tse nang le tšobotsi ea sandbox, ho letsetsa liprothokholo tsa kantle le ho qala lits'ebetso tsa sebatli sa kantle ha ho lumelloe. Ho hlakola lithibelo, sebelisa li- allow-popups, lumella-top-navigation, le ho lumella-top-navigation-with-user-activation properties.
  • Element ha e sa tšehetsoa , e ileng ea fetoha lefeela ka mor'a hore li-plugins li se ke tsa hlola li tšehetsoa.
  • Lintlafatso li entsoe ho lisebelisoa bakeng sa baetsi ba marang-rang. Ka mohlala, phanele ea Litaele ho ile ha khoneha ho fumana 'mala oa ntlha e ka ntle ho fensetere ea sebatli. Ponahalo e ntlafalitsoeng ea boleng ba paramente ho debugger. E ekelitse bokhoni ba ho fetola tatellano ea liphanele ho sebopeho sa Elements.

Ntle le boqapi le litokiso tsa liphoso, mofuta o mocha o tlosa bofokoli ba 14. Bofokoli bo bongata bo ile ba bonoa ka lebaka la tlhahlobo e ikemetseng e sebelisang AddressSanitizer, MemorySanitizer, Control Flow Integrity, LibFuzzer le lisebelisoa tsa AFL. E 'ngoe ea mathata (CVE-2022-2156) e behiloe boemo bo boima ba kotsi, e bolelang bokhoni ba ho feta maemo ohle a ts'ireletso ea sebatli le ho etsa khoutu ho sistimi e kantle ho tikoloho ea sandbox. Lintlha tse mabapi le ts'oaetso ena ha li e-so senoloe, ho tsejoa feela hore li bakoa ke ho fihlella boloko ba memori bo lokolotsoeng (use-after-free).

E le karolo ea lenaneo la ho lefa meputso ea chelete bakeng sa ho sibolla bofokoli bakeng sa tokollo ea hajoale, Google e lefile likhau tse 9 ka chelete ea lidolara tse likete tse 44 tsa US (khau e le 'ngoe ea $20000, khau e le' ngoe ea $7500, khau e le 'ngoe ea $7000, likhau tse peli tsa $3000 le e le 'ngoe ea $2000, $1000 le $500). Boholo ba moputso oa ho ba kotsing e kholo ha bo so tsejoe.

Source: opennet.ru

Eketsa ka tlhaloso