PSA: If you frequently use Google’s Chrome browser, you would possibly need to replace to model 101 earlier than later. According to the most recent patch launch, builders have patched 29 safety holes, six of which builders listing as ‘excessive” threats.
Chrome 101.0.4951.41 for Windows, Mac, and Linux incorporates a number of fixes for extreme safety flaws. Google paid out a complete of $29,000 for 4 of the highest six extra vital vulnerabilities. Chrome devs found the opposite two in-house. These bugs embrace the next.
- CVE-2022-1477: Use after free in Vulkan.
- CVE-2022-1478: Use after free in SwiftShader.
- CVE-2022-1479: Use after free in ANGLE.
- CVE-2022-1481: Use after free in Sharing.
- CVE-2022-1482: Inappropriate implementation in WebGL.
- CVE-2022-1483: Heap buffer overflow in WebGPU.
Google didn’t launch particulars on these vulnerabilities. The firm stated it needed to attend till the vast majority of customers have up to date their browsers earlier than publishing exactly what these flaws are and the way attackers may exploit them. It can also be holding again any info on bugs that exist in third-party libraries till builders have an opportunity to patch them.
Google labeled the remaining 23 fixes as principally medium threats, with 4 designated low. You can view them on the Chrome 101 launch notes. Chrome 101 is the second main launch in a row that Google has urgently inspired customers emigrate to due to safety points.
In March, Google suggested customers to replace from Chrome 99 to Chrome 100 due to a zero-day vulnerability regarding the browser’s JavaScript engine that allowed unauthorized code execution. Version 100 additionally introduced web sites with an issue which may have rendered them unable to learn the person brokers since many put on gear for two-digit browser numbers. Web builders have principally up to date their websites to accommodate the latest browser iterations.
Users can replace manually from Chrome settings or carry out a contemporary set up from our mirror. Alternatively, folks can wait, and the browser will replace routinely in just a few days.
