A new critical vulnerability in Google Chrome: update immediately!
source link: https://www.gizchina.com/2022/08/18/a-new-critical-vulnerability-in-google-chrome-update-immediately/
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
A new critical vulnerability in Google Chrome: update immediately!
A critical vulnerability is available in the Chrome browser – it is not only dangerous, but, as it turned out, has been actively in use by hackers for some time. It is known that Google already released the update that fixes it earlier this week, but so far it may not have reached all users.
We know that stable builds 104.0.5112.101 for macOS and Linux and version 104.0.5112.102/101 for Windows are already available. Normally, the update automatically installs on the user’s computer, but just in case, it’s worth checking the browser in the “Settings” menu – some users indicate that the download of the update begins only after entering the appropriate section.
A critical vulnerability in Google Chrome: you should update the browser immediately
We know that the update includes 11 security fixes, ranging from “critical” to “medium”. Google does not disclose details until most users update the software.
Although there is one critical bug in the list, the most dangerous is probably the “high” level vulnerability CVE-2022-2856 – for it, according to the official Chrome Releases blog, there is already an exploit actively in use by hackers for it. According to the Dark Reading portal, the vulnerability allows malicious sites to execute arbitrary code on a user’s computer.
In other words, hackers know about the vulnerability. So it’s worth updating as soon as possible if the current version of the web browser is not the latest.
Last month, Google has also released an urgent update to its proprietary Chrome browser for Windows.
Chrome update 103.0.5060.114 had a fix for a serious zero-day vulnerability CVE-2022-2294, which was actively in exploitation by attackers. The vulnerability had a high severity level. Google has not yet disclosed details about the vulnerability and its use in order not to give cybercriminals additional information.
However, we already know that we are talking about a buffer overflow vulnerability. It was the discovery by Jan Vojtěsek from Avast in the WebRTC (Web Real-Time Communications) component.
Recommend
-
54
Another Critical Remote Code Execution Vulnerability (CVE-2018-7602) Discovered in Drupal CMS—Patch Your Sites Immediately
-
5
15 Google Chrome Settings You Need To Change Immediately
-
8
iOS 12 has a critical flaw: update your old iPhone immediately!
-
11
Google rolls out update for high-severity vulnerability in Chrome
-
7
A critical security flaw has just been fixed by an urgent update to Google’s web browser. Google has just urgently pushed out a security update for Google Chrome. Which got an upgra...
-
7
Vandana VermaOctober 31, 2022Editor’s note:October 31, 2022 – Snyk has checked our own systems and tools for usag...
-
3
Security experts urge Chrome users to patch new zero-day exploit immediately The finding marks the popular browser's 8th zero-day exploit of 2022 By
-
7
HP prepping firmware update to fix critical security vulnerability in LaserJet printers The bug could allow hackers to remotely access sensitive information By
-
7
News Google urges users to update Chrome to address zero-day vulnerability Google...
-
8
Can you all please just sort this out? — Google wins Sonos patent case, immediately ships speaker software update Experience Google v. Sonos patent battles in real...
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK