Google has released version 1.0.154.46 of it’s browser Chrome which plugs security holes as well as some issues with the browser.

Fixes in the new release:

Security updates:

• Fix bad same-origin check that could lead to one frame being able to read or write the location of other frames.

• Filter out Set-Cookie responses in XMLHttpRequest responses.

• Add support for UA spoofing, and spoof Safari’s UA string when loading URLs from *.mail.live.com (to fix Hotmail).

Updates:

• Fix pages failing to load with ‘waiting for cache…’ message.

• Mitigate Adobe Reader Plugin Open Parameters Cross-Site Scripting Vulnerability (CVE-2007-0048, CVE-2007-0045) by blocking requests for javascript: URLs in NPN_GetURL* calls.

• Fix ability to send mail with Yahoo! Mail.

• Mark the SECOM Trust root certificates for EV.

• Fix to not download outdated SafeBrowsing lists.

• Fix some pop-ups that were blocked even when the user requested them.

• Fix a timing issue that prevented Gears from starting properly sometimes.

You can also check out the detailed release notes & download the latest version on the Google website.