Singapore

SingCERT advises Google Chrome users to install browser update to address zero-day vulnerability

SINGAPORE: Google Chrome customers ought to set up the newest safety updates following stories that hackers are exploiting a “zero-day vulnerability”, the Singapore Pc Emergency Response Group (SingCERT) mentioned on Saturday (Nov 26).

The vulnerability is reportedly being “actively exploited”, mentioned SingCERT.

“Profitable exploitation of the vulnerability may enable attackers to overwrite the applying’s reminiscence to govern its execution path, leading to unrestricted info entry or arbitrary code execution,” it added.

Chrome customers are suggested to improve their browser to model 107.0.5304.121 for macOS and Linux, and model 107.0.5304.121/122 for Home windows to mitigate potential threats.

“Customers are additionally inspired to allow automated updates in Chrome to make sure that their software program is up to date promptly,” mentioned SingCERT.

Customers of Chromium-based browsers, equivalent to Microsoft Edge, Courageous, Opera, and Vivaldi, are additionally suggested to use related fixes as and after they turn into obtainable.

The vulnerability was reported on Nov 22 by Clement Lecigne of Google’s Menace Evaluation Group.

“Entry to bug particulars and hyperlinks could also be stored restricted till a majority of customers are up to date with a repair,” mentioned Google on its Chrome Releases web site.

“We may even retain restrictions if the bug exists in a third-party library that different initiatives equally rely on, however haven’t but mounted.”

That is the eighth zero-day vulnerability exploited in assaults this yr, reported know-how web site Bleeping Pc.

The vulnerability is a heap buffer overflow in GPU, mentioned Google.

“Attackers might use heap buffer overflow to overwrite an utility’s reminiscence to govern its execution path, leading to unrestricted info entry or arbitrary code execution,” mentioned Bleeping Pc.

Leave a Reply

Your email address will not be published. Required fields are marked *

#fx-pricing-widget-copyright{text-align: center; font-size: 13px; font-family: sans-serif; margin-top: 10px; margin-bottom: 10px; color: #9db2bd;} #fx-pricing-widget-copyright a{text-decoration: unset; color: #bb3534; font-weight: 600;}