Google Chrome Patches Six High-Severity Vulnerabilities
Google has released a severe security update for its Chrome browser, addressing six high-severity vulnerabilities that can presumably well well potentially end result in browser crashes and other severe security points.
The update, model 126.0.6478.114/115 for Home windows and Mac and 126.0.6478.114 for Linux is fragment of Google’s ongoing efforts to give a clutch to the security of its broadly-veteran net browser.
Foremost aspects of the Vulnerabilities
The six vulnerabilities patched on this update consist of:
CVE-2024-6100: Kind Confusion in V8
- Severity: High
- Reported by: Seunghyun Lee (@0x10n) collaborating in SSD Obtain Disclosure’s TyphoonPWN 2024 on June 4, 2024
- Reward: $20,000
- Description: This vulnerability involves sort confusion in the V8 JavaScript engine, which might presumably well well allow attackers to produce arbitrary code interior the browser’s sandbox.
CVE-2024-6101: Imperfect Implementation in WebAssembly
- Severity: High
- Reported by: @ginggilBesel on Would possibly well perhaps presumably also 31, 2024
- Reward: $7,000
- Description: This flaw is attributable to of inappropriate implementation in WebAssembly, potentially resulting in unexpected habits or crashes.
CVE-2024-6102: Out of Bounds Memory Make a selection up entry to in Daybreak
- Severity: High
- Reported by: wgslfuzz on Would possibly well perhaps presumably also 7, 2024
- Reward: TBD
- Description: This vulnerability involves out-of-bounds memory access in Daybreak, a net based graphics library, that can be exploited to situation off crashes or produce arbitrary code.
CVE-2024-6103: Use After Free in Daybreak
- Severity: High
- Reported by: wgslfuzz on June 4, 2024
- Reward: TBD
- Description: This field is a exercise-after-free vulnerability in Daybreak, which might presumably well well allow attackers to produce arbitrary code or situation off the browser to atomize.
Google has emphasised the importance of making exercise of this update as soon as possible to mitigate the dangers associated with these vulnerabilities.
The corporate has credited several exterior researchers for his or her contributions to figuring out and reporting these points, highlighting the collaborative nature of cybersecurity efforts.
The vogue to Update Chrome
Customers can update their Chrome browser by following these steps:
- Originate Google Chrome.
- Click on the three vertical dots in the cease factual nook of the window.
- Make a selection “Settings.”
- Scroll down and click on on “About Chrome.”
- Chrome will robotically check for updates. If an update is fleet accessible, this would presumably presumably also very properly be downloaded and installed robotically.
- After the update is installed, restart your Chrome browser to bear a look on the adjustments.
This most contemporary update is fragment of Google’s fashioned security upkeep time table, which objectives to contend with vulnerabilities promptly and protect customers stable from ability threats.
By following these steps, customers can produce sure that their Chrome browser is updated, which is valuable for placing forward security and having access to presumably the most contemporary aspects.
Source credit : cybersecuritynews.com