![]() Google makes no mention of attacks in the wild. The critical security issue is described as " Use after free in Indexed DB" and filed under CVE-2022-1853. One issue has the highest severity rating of critical, several others a rating of high. Brave and Microsoft Edge have each seeded updates to address the same bugs as Chrome 101.The update includes a total of 32 security fixes. Also, as Forbes notes, other browsers which use the Chromium engine are receiving updates as well. Don’t fret if you don’t see the update right away. Google says that Chrome version 101 is rolling out to users over the coming days and weeks. ![]() Reported by Mark Brand of Google Project Zero on High CVE-2022-1483: Heap buffer overflow in WebGPU.Reported by Christoph Diehl, Microsoft on High CVE-2022-1482: Inappropriate implementation in WebGL.Reported by Weipeng Jiang and Guang Gong of 360 Vulnerability Research Institute on High CVE-2022-1481: Use after free in Sharing.High CVE-2022-1479: Use after free in ANGLE.High CVE-2022-1478: Use after free in SwiftShader.High CVE-2022-1477: Use after free in Vulkan.These were the six high-level threats that Google patched in Chrome 101: One use-after-free (UAF) vulnerability in Vulkan was worth over $10,000, with several other bugs resulting in payouts worth over $5,000. In all, Google paid out over $80,000 to external researchers that uncovered the bugs patched in Chrome 101. Nevertheless, Chrome 101 does patch potential vulnerabilities, which is why updating is so important. Unlike the zero-day bugs, there isn’t evidence that attackers were actively exploiting these bugs. The update addresses six bugs designated as high-level threats. ![]() Last Tuesday, April 26th, Google’s Prudhvikumar Bommana said in a blog post that Chrome 1.41 had begun rolling out to the stable channel for Windows, Mac, and Linux. Chrome 101 includes important security fixes ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |