Google addresses and patches four significant security flaws in its Chrome browser updates
Google has rolled out an update for its Chrome browser, addressing several critical security issues that could potentially put users' data at risk. The update is available for Windows, macOS, and Linux users, who are strongly advised to install the patched version as soon as possible.
The update, version 140.0.7339.185/.186 for desktop users and versions 140.0.7339.155 for Android and 141.0.7390.26 for iOS, fixes four critically-rated security vulnerabilities. One of these vulnerabilities involves a Type Confusion in the V8 JavaScript engine, which, if exploited, could allow an attacker to inject malicious code. Attackers could create a specially crafted HTML page that triggers a heap corruption, potentially leading to the injection of their own code. This poses a risk of personal data being compromised, or in the worst case, gaining full control of the system.
Another vulnerability discovered is a heap buffer overflow in the Angle component. This issue could also allow an attacker to inject their own code, posing similar risks.
In addition to these, two other security vulnerabilities could cause a "Use after free" in the Dawn or WebRTC component.
Google recommends users to update their Chrome browser through the integrated update function in settings or via the download area of ComputerBase. Chromium-based browsers like Microsoft Edge are expected to follow suit with their own updates soon. Android and iOS users can update through the Play Store or the App Store, respectively.
In unrelated news, the CB-Funk Podcast #136, titled "Breaking News, FSR 4 on RDNA 3 and the 'Mouse Revolution' with Jan-Frederik and Fabian", was published by the duo Jan-Frederik and Fabian. The podcast discusses FSR 4 on RDNA 3 and the 'Mouse Revolution', offering insights for tech enthusiasts.
Read also:
- Expanded Criticism of Human Rights Protections - Specialists Criticize Russia's Intensified Crackdown on Virtual Private Networks and Encrypted Applications
- Cyber Attack Nets $14 Million from WOO X Across Four Different Blockchains
- Auto industry giants Fescaro and TUV Nord team up for cybersecurity certification in automobiles
- Nigerian Securities and Exchange Commission (SEC) teams up with Chainalysis to combat cryptocurrency fraud activities
