Chrome Security Update: Patch for Multiple Vulnerabilities Leads to Remote Code Execution
- С сайта: Vulnerability(cybersecuritynews.com)
- Вернуться к списку новостей
С сайта: Vulnerability(cybersecuritynews.com)
Google has announced the release of Chrome 126, a critical security update that addresses 10 vulnerabilities, including 8 high-severity flaws reported by external researchers.
This update is now rolling out for Windows, macOS, and Linux users, with version numbers 126.0.6478.182/183 for Windows and macOS and 126.0.6478.182 for Linux.
The security update focuses on resolving several memory-related issues that could potentially lead to sandbox escapes and remote code execution. The vulnerabilities fixed in this release include:
While there are no reports of these vulnerabilities being exploited in the wild, users are strongly advised to update their browsers as soon as possible to mitigate potential risks.
The update process is automatic, but users can manually check for updates by navigating to Chrome’s settings and selecting “About Chrome.”
In addition to the desktop version, Google has also released Chrome 126.0.6478.186 for Android, which includes the same security patches as the desktop release.
This update underscores Google’s ongoing efforts to improve Chrome’s security and address potential vulnerabilities promptly.
Users are encouraged to keep their browsers up-to-date to ensure they have the latest security protections.
To update Chrome, users can go to the browser’s settings and click on “About Chrome,” and the browser can check for and install any available updates.
#Cyber_Security #Cyber_Security_News #Security_Updates #Vulnerability #Chrome_Update #cyber_security #cyber_security_news #Vulnerabilities
Оригинальная версия на сайте:
Chrome Security Update: Patch for Multiple Vulnerabilities Leads to Remote Code Execution
Author: Guru BaranGoogle has announced the release of Chrome 126, a critical security update that addresses 10 vulnerabilities, including 8 high-severity flaws reported by external researchers.
This update is now rolling out for Windows, macOS, and Linux users, with version numbers 126.0.6478.182/183 for Windows and macOS and 126.0.6478.182 for Linux.
The security update focuses on resolving several memory-related issues that could potentially lead to sandbox escapes and remote code execution. The vulnerabilities fixed in this release include:
- Inappropriate implementation in V8 (CVE-2024-6772)
- Type confusion in V8 (CVE-2024-6773)
- Use-after-free bugs in Screen Capture (CVE-2024-6774)
- Use-after-free in Media Stream (CVE-2024-6775)
- Use-after-free in Audio (CVE-2024-6776)
- Use-after-free in Navigation (CVE-2024-6777)
- Race condition in DevTools (CVE-2024-6778)
- Out-of-bounds memory access in V8 (CVE-2024-6779)
While there are no reports of these vulnerabilities being exploited in the wild, users are strongly advised to update their browsers as soon as possible to mitigate potential risks.
The update process is automatic, but users can manually check for updates by navigating to Chrome’s settings and selecting “About Chrome.”
In addition to the desktop version, Google has also released Chrome 126.0.6478.186 for Android, which includes the same security patches as the desktop release.
This update underscores Google’s ongoing efforts to improve Chrome’s security and address potential vulnerabilities promptly.
Users are encouraged to keep their browsers up-to-date to ensure they have the latest security protections.
To update Chrome, users can go to the browser’s settings and click on “About Chrome,” and the browser can check for and install any available updates.
#Cyber_Security #Cyber_Security_News #Security_Updates #Vulnerability #Chrome_Update #cyber_security #cyber_security_news #Vulnerabilities
Оригинальная версия на сайте:
