Google today released Chrome version 27 for Windows, Mac and Linux boosting page load by 5% as well as bringing important updates meant for developer. You can grab the latest version of Chrome by using the browser’s updater or you can download it directly from google.com/chrome. The updated version includes:
- Web pages load 5% faster on average
- chrome.syncFileSystem API
- Improved ranking of predictions, improved spell correction, and numerous fundamental improvements for Omnibox predictions.
Chrome 27 also addresses 14 security holes (with 11 rated High, 2 marked Medium, and 1 rated Low):
- [$1000]  High CVE-2013-2837: Use-after-free in SVG. Credit to Sławomir Błażek.
- [$500]  Medium CVE-2013-2838: Out-of-bounds read in v8. Credit to Christian Holler.
- [$1500]  High CVE-2013-2839: Bad cast in clipboard handling. Credit to Jon of MWR InfoSecurity.
- [$1000]  High CVE-2013-2840: Use-after-free in media loader. Credit to Nils of MWR InfoSecurity.
- [$1000]  High CVE-2013-2841: Use-after-free in Pepper resource handling. Credit to Chamal de Silva.
- [$2000]  High CVE-2013-2842: Use-after-free in widget handling. Credit to Cyril Cattiaux.
- [$1000]  High CVE-2013-2843: Use-after-free in speech handling. Credit to Khalil Zhani.
- [$1000]  High CVE-2013-2844: Use-after-free in style resolution. Credit to Sachin Shinde (@cons0ul).
- [$3133.7]     High CVE-2013-2845: Memory safety issues in Web Audio. Credit to Atte Kettunen of OUSPG.
- [$1000]  High CVE-2013-2846: Use-after-free in media loader. Credit to Chamal de Silva.
- [$1000]  High CVE-2013-2847: Use-after-free race condition with workers. Credit to Collin Payne.
- [$500]  Medium CVE-2013-2848: Possible data extraction with XSS Auditor. Credit to Egor Homakov.
-  Low CVE-2013-2849: Possible XSS with drag+drop or copy+paste. Credit to Mario Heiderich.
-  High CVE-2013-2836: Various fixes from internal audits, fuzzing and other initiatives.