Security News > 2021 > March > Google Warns Mac, Windows Users of Chrome Zero-Day Flaw
Google is hurrying out a fix for a vulnerability in its Chrome browser that's under active attack - its third zero-day flaw so far this year.
Another high-severity flaw is a heap-buffer overflow error that stems from Chrome tab groups.
The use-after-free flaw is the third zero-day flaw to plague Google's Chrome browser in the past three months - and the second this month alone.
Earlier in March, Google said it fixed a high-severity zero-day vulnerability in its Chrome browser, which stems from the audio component of the browser.
In February, Google warned of a zero-day vulnerability in its V8 open-source web engine that's being actively exploited by attackers; a patch for which was issued in version 88 of Google's Chrome browser.
Google Chrome users can go to chrome://settings/help by clicking Settings > About Chrome.
News URL
https://threatpost.com/google-mac-windows-chrome-zero-day/164759/
Related news
- Google fixes ninth Chrome zero-day exploited in attacks this year (source)
- Google fixes ninth Chrome zero-day tagged as exploited this year (source)
- Google tags a tenth Chrome zero-day as exploited this year (source)
- New Windows SmartScreen bypass exploited as zero-day since March (source)
- Windows driver zero-day exploited by Lazarus hackers to install rootkit (source)
- Google Fixes High-Severity Chrome Flaw Actively Exploited in the Wild (source)
- New Chrome zero-day actively exploited, patch quickly! (CVE-2024-7971) (source)
- Week in review: PostgreSQL databases under attack, new Chrome zero-day actively exploited (source)
- Google Warns of CVE-2024-7965 Chrome Security Flaw Under Active Exploitation (source)
- Google increases Chrome bug bounty rewards up to $250,000 (source)