Security News > 2021 > June > Chrome Browser Bug Under Active Attack
Google is warning that a bug in its Chrome web browser is actively under attack, and it is urging users to upgrade to the latest 91.0.4472.101 version to mitigate the issue.
In all, Google rolled out fixes for 14 bugs impacting its Windows, Mac and Linux browsers as part of its June update to the Chrome desktop browser.
The update coincides with the release of the Android Chrome browser to Chrome 91, also on Wednesday.
While the desktop and mobile versions of the Chrome web browser share the same version number, it is unclear if the updated Android Chrome browser is impacted by the same vulnerabilities.
As part of the June Chrome update, Google patched a critical use-after-free bug within the browser's optimization engine called BFCache.
"Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third-party library that other projects similarly depend on, but haven't yet fixed," the Google advisory stated.
News URL
https://threatpost.com/chrome-browser-bug-under-attack/166804/
Related news
- Week in review: MS Office flaw may leak NTLM hashes, malicious Chrome, Edge browser extensions (source)
- Google fixes ninth Chrome zero-day exploited in attacks this year (source)
- Qilin ransomware now steals credentials from Chrome browsers (source)
- New Qilin Ransomware Attack Uses VPN Credentials, Steals Chrome Data (source)
- Week in review: PostgreSQL databases under attack, new Chrome zero-day actively exploited (source)