Chrome 98.0.4758.102 fixes 11 vulnerabilities, including a 0-day one

Google Chrome 98.0.4758.102 has become available to the stable branch with several important fixes. Released on February 14, 2022, it fixes 11 security issues, inlcuding one that is actively exploited.

Chrome 98.0.4758.102

The vulnerability CVE-2022-0609, Use after free, is actively used to breach the browser, Google says. It is related to the Web Animations API. Google didn't reveal much about this vulnrebility, but recomments users to install this update as soon as possible to prevent possible attacks.

Existing Chrome users can open the menu (Alt + F), and navigate to Help > About Google Chrome to trigger the update check. Alternatively, you can download the browser from its official website.

The full list of the fixes vulnerabilities looks as follows.

Fixes in Chrome 98.0.4758.102

High CVE-2022-0603: Use after free in File Manager. Reported by Chaoyuan Peng (@ret2happy) on 2022-01-22

High CVE-2022-0604: Heap buffer overflow in Tab Groups. Reported by Krace on 2021-11-24

High CVE-2022-0605: Use after free in Webstore API. Reported by Thomas Orlita on 2022-01-13

High CVE-2022-0606: Use after free in ANGLE. Reported by Cassidy Kim of Amber Security Lab, OPPO Mobile Telecommunications Corp. Ltd. on 2022-01-17

High CVE-2022-0607: Use after free in GPU. Reported by 0x74960 on 2021-09-17

High CVE-2022-0608: Integer overflow in Mojo. Reported by Sergei Glazunov of Google Project Zero on 2021-11-16

High CVE-2022-0609: Use after free in Animation. Reported by Adam Weidemann and Clément Lecigne of Google's Threat Analysis Group on 2022-02-10

Medium CVE-2022-0610: Inappropriate implementation in Gamepad API. Reported by Anonymous on 2022-01-08

You will find some more information in this post.

Support us

Winaero greatly relies on your support. You can help the site keep bringing you interesting and useful content and software by using these options:

If you like this article, please share it using the buttons below. It won't take a lot from you, but it will help us grow. Thanks for your support!


Author: Sergey Tkachenko

Sergey Tkachenko is a software developer who started Winaero back in 2011. On this blog, Sergey is writing about everything connected to Microsoft, Windows and popular software. Follow him on Telegram, Twitter, and YouTube.

Leave a Reply

Your email address will not be published.

Using Telegram? Subscribe to the blog channel!
Hello. Add your message here.