Security News > 2022 > December > Google Chrome emergency update fixes 9th zero-day of the year
Google has released Chrome 108.0.5359.94/.95 for Windows, Mac, and Linux users to address a single high-severity security flaw, the ninth Chrome zero-day exploited in the wild patched since the start of the year.
This update was immediately rolled out to our systems when BleepingComputer checked for new updates from the Chrome menu > Help > About Google Chrome.
The zero-day vulnerability is due to a high-severity type confusion weakness in the Chrome V8 JavaScript engine reported by Clement Lecigne of Google's Threat Analysis Group.
"Access to bug details and links may be kept restricted until a majority of users are updated with a fix," Google added.
This will provide Google Chrome users with enough time to upgrade their browsers and prevent exploitation attempts until more info is released, allowing more attackers to develop their own exploits.
With this emergency update, Google has addressed the ninth Chrome zero-day attackers have exploited in the wild since the start of 2022.
News URL
Related news
- Lazarus hackers used fake DeFi game to exploit Google Chrome zero-day (source)
- How to enable Safe Browsing in Google Chrome on Android (source)
- Lazarus Group Exploits Google Chrome Vulnerability to Control Infected Devices (source)
- New tool bypasses Google Chrome’s new cookie encryption system (source)
- Google: 70% of exploited flaws disclosed in 2023 were zero-days (source)
- Google to let businesses create curated Chrome Web Stores for extensions (source)
- Google’s AI Tool Big Sleep Finds Zero-Day Vulnerability in SQLite Database Engine (source)
- Google fixes two Android zero-days used in targeted attacks (source)
- Google says “Enhanced protection” feature in Chrome now uses AI (source)