Google Chrome 98.0.4758.102 has become available to the stable branch with several important fixes. Released on February 14, 2022, it fixes 11 security issues, inlcuding one that is actively exploited.
The vulnerability CVE-2022-0609, Use after free, is actively used to breach the browser, Google says. It is related to the Web Animations API. Google didn't reveal much about this vulnrebility, but recomments users to install this update as soon as possible to prevent possible attacks.
Existing Chrome users can open the menu (Alt + F), and navigate to Help > About Google Chrome to trigger the update check. Alternatively, you can download the browser from its official website.
The full list of the fixes vulnerabilities looks as follows.
Fixes in Chrome 98.0.4758.102
High CVE-2022-0603: Use after free in File Manager. Reported by Chaoyuan Peng (@ret2happy) on 2022-01-22
High CVE-2022-0604: Heap buffer overflow in Tab Groups. Reported by Krace on 2021-11-24
High CVE-2022-0605: Use after free in Webstore API. Reported by Thomas Orlita on 2022-01-13
High CVE-2022-0606: Use after free in ANGLE. Reported by Cassidy Kim of Amber Security Lab, OPPO Mobile Telecommunications Corp. Ltd. on 2022-01-17
High CVE-2022-0607: Use after free in GPU. Reported by 0x74960 on 2021-09-17
High CVE-2022-0608: Integer overflow in Mojo. Reported by Sergei Glazunov of Google Project Zero on 2021-11-16
High CVE-2022-0609: Use after free in Animation. Reported by Adam Weidemann and Clément Lecigne of Google's Threat Analysis Group on 2022-02-10
Medium CVE-2022-0610: Inappropriate implementation in Gamepad API. Reported by Anonymous on 2022-01-08
You will find some more information in this post.
Support us
Winaero greatly relies on your support. You can help the site keep bringing you interesting and useful content and software by using these options: