Security News > 2022 > July > Chromium's WebRTC zero-day fix arrives in Microsoft Edge
Microsoft has followed Google's lead and issued an update for its Edge browser following the arrival of a WebRTC zero-day.
Microsoft remained tight-lipped on the matter, merely saying that since Edge "Ingests" Chromium, the vulnerabilities had been addressed.
Microsoft's Edge browser originally used Microsoft's own proprietary browser engine.
At the time of writing, Microsoft Edge had reached double figures in terms of marketshare, ahead of rivals such as Firefox, but still a long way behind Chrome.
While the adoption of Chromium has eased the compatibility headaches of Edge, vulnerabilities in the Chromium rendering engine will apply equally to Edge as well as Chrome.
As well as a fix for the stable version, Microsoft also issued a patch for the extended stable incarnation, bringing the version number to 102.0.1245.56.
News URL
https://go.theregister.com/feed/www.theregister.com/2022/07/07/edge_cves/
Related news
- Microsoft patches two actively exploited zero-days (CVE-2024-29988, CVE-2024-26234) (source)
- Microsoft fixes two Windows zero-days exploited in malware attacks (source)
- Microsoft Fixes 149 Flaws in Huge April Patch Release, Zero-Days Included (source)
- Week in review: Palo Alto Networks firewalls under attack, Microsoft patches two exploited zero-days (source)
- Microsoft: New Copilot app added by Edge doesn’t collect data (source)
- Microsoft: Copilot ‘app’ on Windows Server mistakenly added by Edge (source)
- Microsoft May 2024 Patch Tuesday fixes 3 zero-days, 61 flaws (source)
- Microsoft fixes Windows zero-day exploited in QakBot malware attacks (source)
- May 2024 Patch Tuesday: Microsoft fixes exploited zero-days (CVE-2024-30051, CVE-2024-30040) (source)
- Microsoft Patches 61 Flaws, Including Two Actively Exploited Zero-Days (source)