Google Chrome will song receive a patch for a privacy bug that existed for over two decades, allowing a MALICIOUS Website to Identify Sites that WERVIUSLY VISITED by A. User. Over the Years, some web browsers previously introduced some measures to deal with the issue, but google says User. The fix will Arrive with Google Chrome version 136, which is expected to roll out late this month.
How: Visited Link Partitioning Works
In a post on the chrome developer blog published earlier this month, the company revised that it has fixed an issue with the css :visited Selector that would reviewal details of a user’s browsing activity to another site. The browser usually shows a visited link in purple instead of blue, indicating the link – on that sit – it was previously clicked by a user.
:visited {
color: purple;
background-color: yellow;
}
However, browsers also display the visited links with the purple color on other websites, if they include the same link. Unscrupulous websites clock then use malicious code to identify links in the browser’s :visited History. The issue was first identified in May 2022, which means the bug is Nearly 23 years old.
Malicious sites could identify Visited links on their website
Photo Credit: Google
This privacy bug existed for over 20 years due to a specific reason – the browser’s :visited History was “unpartitioned”. Clicking on a link would mark it as visited on any website that featured the same url.
In order to Patch this bug, google adopted a three-tier partitioning system that is designed to prevent different forms of attackers used to Discover a User’s Link History. For starters, google will only show a link as visited if a user clicked it on that particular site.
This means that if a user clicked a link to site b on site a, then chrome won’t rev the link to site b as visited on site c. as a result, the website can no longer determine determine who has the use.
Blocking Visited History on Malicious Sites Using Partitioning
Photo Credit: Google
Google Chrome will also limit the ability to check: Visited Links History for Frames on Websites. However, a website will be able to display its subpages as :visitedAccording to google. As a result, links to that site’s own subpages can appear in purple, while links to third party sites will appear blue, protecting user private.
Google says the bug has been fixed on chrome version 136, which is expected to roll out to users on the staff Builds of Chrome Should Alredy be Protected from the 23-IEAT OLD PRIVACY BUG.
(Tagstotranslate) Google Chrome 136 Privacy Bug Visited Links Google Chrome (T) Chrome (T) Privacy (T) Bugs (T) Bugs (T) Google