Google on Thursday launched software program updates to deal with one more zero-day flaw in its Chrome net browser.
Tracked as CVE-2022-4135, the high-severity vulnerability has been described as a heap buffer overflow within the GPU element. Clement Lecigne of Google’s Menace Evaluation Group (TAG) has been credited with reporting the flaw on November 22, 2022.
Heap-based buffer overflow bugs may be weaponized by menace actors to crash a program or execute arbitrary code, resulting in unintended habits.
“Google is conscious that an exploit for CVE-2022-4135 exists within the wild,” the tech big acknowledged in an advisory.
However like different actively exploited points, technical specifics have been withheld till a majority of the customers are up to date with a repair and to stop additional abuse.
With the newest replace, Google has resolved eight zero-day vulnerabilities in Chrome for the reason that begin of the yr –
Customers are beneficial to improve to model 107.0.5304.121 for macOS and Linux and 107.0.5304.121/.122 for Home windows to mitigate potential threats.
Customers of Chromium-based browsers comparable to Microsoft Edge, Courageous, Opera, and Vivaldi are additionally suggested to use the fixes as and once they turn into obtainable.