Security News > 2022 > December > Google Chrome emergency update fixes 9th zero-day of the year
Google has released Chrome 108.0.5359.94/.95 for Windows, Mac, and Linux users to address a single high-severity security flaw, the ninth Chrome zero-day exploited in the wild patched since the start of the year.
This update was immediately rolled out to our systems when BleepingComputer checked for new updates from the Chrome menu > Help > About Google Chrome.
The zero-day vulnerability is due to a high-severity type confusion weakness in the Chrome V8 JavaScript engine reported by Clement Lecigne of Google's Threat Analysis Group.
"Access to bug details and links may be kept restricted until a majority of users are updated with a fix," Google added.
This will provide Google Chrome users with enough time to upgrade their browsers and prevent exploitation attempts until more info is released, allowing more attackers to develop their own exploits.
With this emergency update, Google has addressed the ninth Chrome zero-day attackers have exploited in the wild since the start of 2022.
News URL
Related news
- Google Chrome to use on-device AI to detect tech support scams (source)
- Google Chrome to block admin-level browser launches for better security (source)
- Google Chrome's Built-in Manager Lets Users Update Breached Passwords with One Click (source)
- Google fixes Android zero-days exploited in attacks, 60 other flaws (source)
- Google Drops Cookie Prompt in Chrome, Adds IP Protection to Incognito (source)
- Google: 97 zero-days exploited in 2024, over 50% in spyware attacks (source)
- Google Reports 75 Zero-Days Exploited in 2024 — 44% Targeted Enterprise Security Products (source)
- Google Rolls Out On-Device AI Protections to Detect Scams in Chrome and Android (source)
- Google fixes high severity Chrome flaw with public exploit (source)