Hit enter after type your search item

Share Your Story

Google Chrome Will get Second Safety Patch for Important Zero-Day Bug in Two Weeks


Google has began rolling out a brand new safety replace for its Chrome browser on desktops. The brand new patch contains fixes to a complete of 10 bugs within the browser, together with a zero-day vulnerability — the second to have been seen by Google’s Risk Evaluation Group (TAG) that tracks menace actors within the final two weeks. As all the time, Google says that particulars of the bug and hyperlinks will not be revealed until a majority of Chrome customers have put in the replace and the vulnerabilities are additionally mounted in any associated third-party library. A zero-day vulnerability refers to a just lately found software program safety flaw that would have been already exploited by hackers.

The Google Chrome safety patch model 86.0.4240.183 is being launched for methods operating on Home windows, Mac, and Linux. Google in a weblog revealed on the Chrome replace on November 2 mentioned that it was conscious of stories that an exploit of the actual zero-day vulnerability recognized as CVE-2020-16009 exists within the wild. The changelog of the replace solely has a passing point out that the zero-day bug was in V8 — an open-source JavaScript engine designed for Google Chrome and can also be utilized by different Chromium browsers, corresponding to Microsoft Edge and Opera.

The zero-day subject that the most recent patch fixes is the second to be noticed within the final two weeks and the fourth within the final 12 months. Google had final launched a safety patch on October 20 to repair CVE-2020-15999 — an actively exploited reminiscence corruption bug within the FreeType font rendering library inside Chrome. A couple of days after releasing a safety patch to repair it, Google on October 30 revealed that the zero-day CVE-2020-15999 was being exploited along with a home windows zero-day vulnerability recognized as CVE-2020-17087. Whereas the malicious code was being executed inside Google Chrome, the Home windows zero-day was rising the code’s privileges to assault the Home windows OS. Ben Hawkes, the technical lead of Google’s Venture Zero, an elite workforce of bug hunters, has mentioned that Microsoft is anticipated to subject a safety patch to repair their safety flaw on November 10.

Whereas Google’s TAG didn’t reveal if the 2 bugs have been being exploited by the identical menace actors, it confirmed that the motive of the attackers was unrelated to the US presidential elections.

Is Mi Pocket book 14 collection one of the best inexpensive laptop computer vary for India? We mentioned this on Orbital, our weekly know-how podcast, which you’ll be able to subscribe to through Apple Podcasts or RSS, obtain the episode, or simply hit the play button beneath.

For the most recent tech information and opinions, observe Devices 360 on Twitter, Fb, and Google Information. For the most recent movies on devices and tech, subscribe to our YouTube channel.

Veer Arjun Singh

Spotify Will Let Artists, Labels, Select Which Songs to Promote in Radio, Autoplay

Associated Tales

Leave a Comment

Your email address will not be published. Required fields are marked *

This div height required for enabling the sticky sidebar
Ad Clicks :Ad Views : Ad Clicks :Ad Views : Ad Clicks :Ad Views : Ad Clicks :Ad Views : Ad Clicks :Ad Views : Ad Clicks :Ad Views : Ad Clicks :Ad Views : Ad Clicks :Ad Views : Ad Clicks :Ad Views : Ad Clicks :Ad Views : Ad Clicks :Ad Views :