Google urges Chrome 100 users to update to 101 because of 29 security flaws | Te...
source link: https://www.techspot.com/news/94431-google-urges-chrome-100-users-update-101-because.html
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Google urges Chrome 100 users to update to 101 because of 29 security flaws
Only six are high threat vulnerabilities, which is enough to warrant the update
By Cal Jeffrey May 2, 2022, 1:47 PMPSA: If you regularly use Google's Chrome browser, you might want to update to version 101 sooner than later. According to the latest patch release, developers have patched 29 security holes, six of which developers list as 'high" threats.
Chrome 101.0.4951.41 for Windows, Mac, and Linux contains several fixes for severe security flaws. Google paid out a total of $29,000 for four of the top six more critical vulnerabilities. Chrome devs discovered the other two in-house. These bugs include the following.
- CVE-2022-1477: Use after free in Vulkan.
- CVE-2022-1478: Use after free in SwiftShader.
- CVE-2022-1479: Use after free in ANGLE.
- CVE-2022-1481: Use after free in Sharing.
- CVE-2022-1482: Inappropriate implementation in WebGL.
- CVE-2022-1483: Heap buffer overflow in WebGPU.
Google did not release details on these vulnerabilities. The company said it wanted to wait until the majority of users have updated their browsers before publishing precisely what these flaws are and how attackers could exploit them. It is also holding back any information on bugs that exist in third-party libraries until developers have a chance to patch them.
Google labeled the remaining 23 fixes as mostly medium threats, with four designated low. You can view them on the Chrome 101 release notes. Chrome 101 is the second major release in a row that Google has urgently encouraged users to migrate to because of security issues.
In March, Google advised users to update from Chrome 99 to Chrome 100 because of a zero-day vulnerability relating to the browser's JavaScript engine that allowed unauthorized code execution. Version 100 also presented websites with a problem that might have rendered them unable to read the user agents since many wear gear for two-digit browser numbers. Web developers have mostly updated their sites to accommodate the newest browser iterations.
Users can update manually from Chrome settings or perform a fresh install from our mirror. Alternatively, people can wait, and the browser will update automatically in a few days.
Recommend
-
4
As an old version of the app could block 911 calls A compatibility problem that was discovered late last year and which impacted Microsoft Teams and Android caused some devices to no longer be able...
-
6
-
6
Microsoft Urges Windows Users To Run Patch For DogWalk Zero-Day Exploit Slashdot is powered by
-
5
PSA: Google advises users to update Chrome as soon as possible At least one security flaw in the popular web browser is being actively exploited in the wild By
-
7
News Google urges users to update Chrome to address zero-day vulnerability Google...
-
2
Google is replacing Chrome's lock icon because it's not an indicator of website safety Users find the icon confusing, not knowing what it really means By
-
6
unlocked — Google will retire Chrome’s HTTPS padlock icon because no one knows what it means Google says only 11% of users understand "the precise meaning of the lock icon....
-
2
Apple urges users to upgrade their devices immediately to patch three 'active' zero day exploits The security patch was deployed using Apple's new Rapid Security Response automatic upd...
-
4
Chrome users will soon get a new security update every week Minimizing the patch gap to avoid n-day exploitability of security bugs By
-
3
TikTok urges millions of users to ‘speak up’ against US ban Chinese-owned social media company faces b...
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK