ScrollToTextFragment allows for a link to a specific location within a text document to be created by anyone, as ScrollToTextFeature does not require an anchor to do so.Īs useful as this feature is, there are growing concerns that ScrollToTextFragment can be exploited in terms of privacy. Google does do this already, but to do so, the capability needed to be dependant on an anchor which was created by the owner of the site.
This feature also allows for Google the link to a single word of text on the page, with its position. The update, known as ‘Chrome 80’, enables deep links to web documents, through implementing a new browser capability called ScrollToTextFragment. That will check whether the software is updated.Google has introduced a new update to Chrome, and with it a new type of privacy concern. Chrome is able to update itself, and users should therefore get access to the update.īut users can trigger the update manually, by heading into the menus, choosing help and clicking “about Google Chrome”. The update will be pushed out to users automatically in “the coming days/weeks”, Google said. 102, which is available for Windows, Mac and Linux. The problem is fixed with a new update numbered. It is the first time that Google has been forced to push out an emergency update of this kind this year. The flaw is what is known as a “zero-day bug”, meaning that tGoogle had no time to fix the problem before it was out in the world. The bug is known as CVE-2022-060, and Google announced the problem and the update to fix it in a post on its security page.īut it said that it would keep some bug details private until most users have received the update, to avoid giving clues to attackers about how to exploit it. An exploit for that bug is already available, the company said, and so attackers might already be using it.
0 kommentar(er)
