Google Releases Chrome 136 with Major Changes
Google published the release of Web-browser chrome 136. This release also includes a stable version of the free project chromium, which serves as the foundation for Chrome. Chrome browser differs from chromium in several aspects such as Google logos, notification system in case of crashes, DRM video content modules, automatic update installation system, Sandbox insulation, Google API key provision, and RLZ parameter transfer during searches. The Extended Stable branch is available for users who need more time to update, with support extending up to 8 weeks. The upcoming release of Chrome 137 is scheduled for May 27.
The main changes in Chrome 136 include:
Protection has been added to prevent information leakage about previously visited pages caused by the use of the CSS pseudo-class “:visited”. Before Chrome 136, changes in link design would be reflected across all sites showing the same link, allowing attackers to determine if a user had previously visited certain links. To block these leaks, styles for viewed links are now isolated using a hash key based on the links, top level, and host site used in iframes.
For example, a link visited from site “A” will only be highlighted on site “A” and not on the attacker’s website. Exceptions are made for iframes loaded from the main site (Same-Origin) and links to the current site. Therefore, links leading back to site “A” will be highlighted when navigating from another site, but other links will only be highlighted if they were visited from site “A”.
