Enhance Online Efficiency with the Latest Google Chrome Upgrade | Expert Tips

Enhance Online Efficiency with the Latest Google Chrome Upgrade | Expert Tips

Joseph Lv12

Enhance Online Efficiency with the Latest Google Chrome Upgrade | Expert Tips

Holding up the HP Dragonfly Pro Chromebook.

June Wan/ZDNET

If you are one of the millions of worldwide Chrome users, it’s time for yet another update. That’s right, a sixth zero-day exploit has been discovered in Chrome and, fortunately, the update was released shortly after.

If you’re uncertain as to what a zero-day vulnerability is, it’s simply a vulnerability that has been discovered but not yet patched.

Also: Android’s September security update fixes actively exploited zero-day and more

The exploit in question is CVE-2023-6345 and does exist in the wild. According to Tenable, the official description of this vulnerability is, “Integer overflow in Skia in Google Chrome prior to 119.0.6045.199 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. (Chromium security severity: High).”

Newsletters

ZDNET Tech Today

ZDNET’s Tech Today newsletter is a daily briefing of the newest, most talked about stories, five days a week.

Subscribe

See all

The Chrome Stable channel has been updated to 119.0.6045 for both Linux and Mac and 119.0.6045.199/.200 for Windows. Although the update hasn’t been rolled out for every user, Google has confirmed it will happen over the coming days/weeks.

This update includes seven different security fixes (including for the zero-day exploit), which are:

  • CVE-2023-6348: Type Confusion in Spellcheck
  • CVE-2023-6347: Use after free in Mojo.
  • CVE-2023-6346: Use after free in WebAudio.
  • CVE-2023-6350: Out of bounds memory access in libavif.
  • CVE-2023-6351: Use after free in libavif.
  • CVE-2023-6345: Integer overflow in Skia.

It is the final vulnerability, listed above, that is the zero-day exploit. It’s interesting to know that this vulnerability is listed as High and not Critical. Even so, any bug listed as High should be considered a must-patch. Other than saying this vulnerability exists in the wild, Google has been a bit hush-hush about it. You can read Google’s official statement about the issue .

Also: Hands on with Google’s new Titan Security Keys - and why they still have their place

To find out which version of Chrome you are using, go to Settings > About Chrome, where you’ll see the version number. If there is an update available, make sure to click Relaunch, so the updates will be applied. If you find your version is out-of-date, you can always go to the Chrome download page , download the latest version, and install it.

The 10 best laptop deals ahead of October Prime Day

Google’s AI podcast tool transforms your text into stunningly lifelike audio - for free

My favorite Garmin sports watch ever just got a new version, and it costs $200 less

5 nearly hidden Android features you should already be using

Also read:

  • Title: Enhance Online Efficiency with the Latest Google Chrome Upgrade | Expert Tips
  • Author: Joseph
  • Created at : 2024-11-09 22:07:45
  • Updated at : 2024-11-15 22:46:24
  • Link: https://hardware-help.techidaily.com/enhance-online-efficiency-with-the-latest-google-chrome-upgrade-expert-tips/
  • License: This work is licensed under CC BY-NC-SA 4.0.
On this page
Enhance Online Efficiency with the Latest Google Chrome Upgrade | Expert Tips