Google today released Chrome version 36 for Windows, Mac, and Linux (Update: Android as well, see below). Among the changes are various additions and improvements, as well as the usual bug fixes and performance tweaks; you can update to the latest release now using the browser’s built-in silent updater, or download it directly from google.com/chrome.
Here’s the Chrome 36.0.1985.122 changelog provided by Google:
- Rich Notifications Improvements.
- An Updated Incognito / Guest NTP design.
- The addition of a Browser crash recovery bubble.
- Chrome App Launcher for Linux.
- Lots of under the hood changes for stability and performance.
As far as we can tell, the first two points both refer to mainly visual changes. Notifications have been slightly tweaked with a flatter look and new icons. As for incognito mode, the new tab page has been revamped.
Here’s the old look:
And here’s the new look:
What’s odd is that the little incognito character’s profile is still at the top of the browser window, despite the use of the new front-facing view as you can see above. Unless we’re mistaken though, nothing has changed beyond the incognito message.
The third point mentions a new prompt when the browser crashes, but we don’t have a screenshot of that since Chrome 36 hasn’t died on us just yet. As for the revamped Chrome app launcher for Linux, Google previously said in the beta that the changes boil down to a “smaller font size and smarter positioning.”
Although the changelog doesn’t mention this, Google has confirmed that the developer features in Chrome 36 beta have made it to Chrome 36. These include element.animate(), HTML Imports, and Object.observe().
Last but certainly not least, Chrome 36 also addresses 26 security issues, of which Google chose to summarize in only two points:
- [$2000] Medium CVE-2014-3160: Same-Origin-Policy bypass in SVG. Credit to Christian Schneider.
-  CVE-2014-3162: Various fixes from internal audits, fuzzing and other initiatives.
The new features and security fixes are as follows:
- Improved text rendering on non-mobile optimized sites.
- Doodles return to the new tab page.
- Lots of bug fixes and performance improvements!
- [$3000] High CVE-2014-3159: Omnibox URL Spoofing (Android). Credit to Keita Haga.
-  Medium CVE-2014-3161: Same origin policy bypass (Android). Credit to Håvard Molland from Opera.
Google thus spent $5,000 in bug bounties for this release. As we always say, security fixes alone should push Chrome users to upgrade as soon as possible.