9/9/2023 0 Comments Updating google chrome on macThe earliest sign of active exploitation was found on January 4, 2022. The Google Threat Analysis Group (TAG) revealed that North Korean-backed state hackers exploited the CVE-2022-0609 zero-day weeks before the February patch. With this update, Google addressed the second Chrome zero-day since the start of 2022, the other one (tracked as CVE-2022-0609) patched last month. Google Chrome users should have enough time to upgrade Chrome and prevent exploitation attempts until the browser vendor releases more info. "We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven't yet fixed." "Access to bug details and links may be kept restricted until a majority of users are updated with a fix," Google said. While type confusion flaws generally lead to browser crashes following successful exploitation by reading or writing memory out of buffer bounds, attackers can also exploit them to execute arbitrary code.Įven though Google said it detected attacks exploiting this zero-day in the wild, the company did not share technical details or additional info regarding these incidents. The zero-day bug fixed today (tracked as CVE-2022-1096) is a high severity type confusion weakness in the Chrome V8 JavaScript engine reported by an anonymous security researcher. 84 update Exploitation details not revealed
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |