The update, however, has not been pushed out to most users yet.

Google quashed the bug in a developer-only version of Chrome that has not been sent to all users via the browser's update mechanism. users, however, can reset the browser to receive all updates, including the developer editions, with the .

Chrome 0.4.154.18, which was released Tuesday, fixes a vulnerability that could be used by hackers to read files on a user's machine, then transfer them to their own malicious servers. "We now prevent local files from connecting to the network with XMLHttpRequest() and also prompt you to confirm a download if it is an HTML file," , Chrome's program manager, said in an entry to the .

Google also enhanced Chrome by adding several new features to the 0.4.154.18 build, including a bookmark manager, more granular control over the browser's built-in privacy mode and a revamped pop-up blocker.

Larson warned users, however, that Chrome continues to have problems synchronizing offline data using Gears, that can be used offline as well as when the user is connected to the Internet. "Sites that use Gears to synchronize offline data may occasionally hang," Larson said. "You should disable offline access for sites until a fix is released."