Update for Chrome browser closes serious security hole

If a known vulnerability in a program is already being exploited by attackers, it is high time to act. This is currently the case with the Chrome browser. An update is necessary.

Google is rolling out a new Chrome update that should be installed as soon as possible. It eliminates a serious vulnerability in the browser, which the company says is already being actively exploited by attackers.

Hackers can cause memory errors

The vulnerability CVE-2022-4262 affects the JavaScript implementation V8, which is not only used for Chrome, but also for other Chromium-based browsers. This is a “type confusion” bug, where the programming code doesn’t check which object it’s referring to. Hackers can exploit this vulnerability to corrupt the so-called “heap” memory on Windows computers. All they have to do is build an HTML page that causes the error in Chrome’s V8. The resulting memory error then opens the door to their to inject their own malicious code.

The new, secure Chrome update for Windows (108.0.5359.94/.95) and for Mac and Linux (108.0.5359.94) should be available to all users in the coming days and weeks.

Install Chrome update

You can check whether the new Chrome version is already available or already installed in the three-point menu at the top right under “Help/About Google Chrome”. Calling up this menu item also initiates the installation if necessary. If this does not happen, you should try again at a later time.

source

Chrome releases: Stable Channel Update for Desktop (accessed December 6, 2022)

ttn-35