But at least we’ve made it into the new-ish year 10 more days than we managed in 2021, when the first bug to hit arrived on Feb. This is Chrome’s first zero day of the year, and more are sure to follow. Finally, Google patched a medium-severity issue with inappropriate implementation in Gamepad API. As well, the company addressed a high-severity integer overflow in Mojo, plus a high-severity heap buffer overflow in Tab Groups.
GOOGLE CHROME UPDATE 2021 UPDATE
Monday’s update also plastered over four other high-severity use-after-free flaws found in Chrome’s Webstore API, File Manager, ANGLE and GPU. Given that the zero day is under active attack, updating Chrome should be done ASAP.Ĭredit for the Animation zero day goes to Adam Weidemann and Clément Lecigne, both from Google’s Threat Analysis Group (TAG). 102 for Windows, Mac, and Linux, due to roll out over coming days or weeks.Ĭhrome users can fix it straight away, though, by going into the Chrome menu > Help > About Google Chrome. To fix the Animation problem, along with 10 other security issues, Google released Chrome. “Google is aware of reports that an exploit for CVE-2022-0609 exists in the wild,” according to its security update. Such flaws can also be used to escape the browser’s security sandbox. This kind of flaw can lead to all sorts of misery, ranging from the corruption of valid data to the execution of arbitrary code on vulnerable systems.
In a brief update, Google described the weakness, tracked as CVE-2022-0609, as a use-after-free vulnerability in Chrome’s Animation component.
Google on Monday issued 11 security fixes for its Chrome browser, including a high-severity zero-day bug that’s actively being jumped on by attackers in the wild.
0 kommentar(er)
