Chrome To Patch Decades-Old ‘Browser History Sniffing’ Flaw That Let Sites Peek At Your History

Posted on by Steven

Chrome To Patch Decades-Old ‘Browser History Sniffing’ Flaw That Let Sites Peek At Your History

Google is set to release a patch for a long-standing vulnerability in Chrome that has allowed websites to exploit browser history through a technique known as browser history sniffing. This flaw, active for over two decades, involves monitoring link colours to determine if a user has previously visited specific pages, infringing on user privacy.

Source: Slashdot

Key Points

  • The flaw is linked to a method of checking the colour of visited links on web pages.
  • Chrome version 136 is expected to deactivate this vulnerability by improving link rendering methods.
  • This issue has been reported for over 23 years, with some previous attempts to mitigate it inadequately addressed.
  • The upcoming patch is a significant step in enhancing user privacy and security among major browsers.
  • Previous responses to this vulnerability have seen the issue classified as “won’t fix,” demonstrating the evolving stance of browser teams on user privacy measures.

Why should I read this?

This article highlights an important development in web browser security, particularly relevant for users concerned about privacy. As browsers strive to safeguard user data against increasingly sophisticated attacks, this update represents a notable shift in priorities within the tech industry and will be beneficial to all Chrome users seeking greater online security.

“`