Update Google Chrome to patch Two Zero-Day vulnerabilities that are exploited in the wild

Google released a security update for the company’s Google Chrome web browser on September 13, 2021. The update is already available and most Chrome installations should receive it automatically thanks to the integrated updating functionality.

Chrome users may check the installed version by selecting Menu > Help > About Google Chrome, or by launching chrome://settings/help instead. The page displays the installed version and runs a check for updates. If Chrome is not up to date, the latest update will be downloaded and installed. A restart is required to complete the process.

The latest version at the time of writing is Chrome 93.0.4577.82 Stable. It includes the security updates.

google chrome security update 93.0.4577.82

Google’s official post on the Chrome Release blog reveals that 11 security issues are fixed by the update. 9 of the 11 issues are listed on the page, and they all received the severity rating of high, the second highest after critical.

The two vulnerabilities CVE-2021-30632 and CVE-2021-30633 are mentioned specifically by Google, as they are exploited in the wild.

Google is aware that exploits for CVE-2021-30632 and CVE-2021-30633 exist in the wild.

Google does not provide additional information. The scope of attacks in the wild are unknown, as are other important factors such as how attacks are carried out and whether users may take other precautions to avoid being targeted.

The two vulnerabilities are the only ones that were submitted by anonymous; all other vulnerabilities listed on the page have the reporter listed.

[$TBD][1247763] High CVE-2021-30632: Out of bounds write in V8. Reported by Anonymous on 2021-09-08

[$TBD][1247766] High CVE-2021-30633: Use after free in Indexed DB API. Reported by Anonymous on 2021-09-08

It may take days or weeks before Chrome updates automatically. Desktop users may speed up the installation of the update by following the instructions at the top of the article. Since it is unclear how far reaching and serious the attacks are, it is recommended to update Chrome quickly or start using a different browser in the meantime.

Thank you for being a Ghacks reader. The post Update Google Chrome to patch Two Zero-Day vulnerabilities that are exploited in the wild appeared first on gHacks Technology News.

Source link

Leave a Reply

Pin System