Google Chrome 103 update fixes 11 security issues
#1
Quote:Google has released a security update for its Chrome desktop and Android browsers. The update brings the stable channel version of Chrome to 103.0.5060.134 on the desktop, and to 103.0.5060.129 on Android.

[Image: google-chrome-103-security-update-1.png]

The security update is already available. Most Chrome browsers will receive the update automatically, thanks to the built-in automatic updating functionality.

Chrome users may speed up the installation of the security update on desktop versions of Chrome by loading chrome://settings/help in the browser's address bar.

The current version is displayed on the page and Chrome runs a check for updates to find out if a new version is available. If not installed already, Chrome will download and install the security update. A restart is required to complete the upgrade. The Android version of Chrome does not support such an option, as updates are distributed exclusively via Google Play.

Google Chrome 103 security fixes

Google published an article on the Chrome Releases Blog to inform Chrome users and administrators about the update. The blog post confirms that 11 different security issues are patched in the new Chrome release. Six of these, all reported by third-party researchers, are mentioned specifically on the blog.

Google does not list security issues that it found internally on the blog.

The maximum severity rating of all 11 security issues is high, the second highest after critical. Here is the full list as reported by Google:
  • [$16000][1336266] High CVE-2022-2477 : Use after free in Guest View. Reported by anonymous on 2022-06-14
  • [$7500][1335861] High CVE-2022-2478 : Use after free in PDF. Reported by triplepwns on 2022-06-13
  • [$3000][1329987] High CVE-2022-2479 : Insufficient validation of untrusted input in File. Reported by anonymous on 2022-05-28
  • [$NA][1339844] High CVE-2022-2480 : Use after free in Service Worker API. Reported by Sergei Glazunov of Google Project Zero on 2022-06-27
  • [$TBD][1341603] High CVE-2022-2481: Use after free in Views. Reported by YoungJoo Lee(@ashuu_lee) of CompSecLab at Seoul National University on 2022-07-04
  • [$7000][1308341] Low CVE-2022-2163: Use after free in Cast UI and Toolbar. Reported by Chaoyuan Peng (@ret2happy) on 2022-03-21
Google makes no mention of attacks in the wild. It is still recommended to update Chrome to the latest version as soon as possible.

Google released the first Chrome 103 release earlier this month; this update included a fix for a 0-day vulnerability that was exploited in the wild.

Now You: do you use Google Chrome?
...
Continue Reading
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:





[-]
Recent Posts
AdGuard v4.5.8 for iOS
AdGuard v4.5.8 for...harlan4096 — 09:45
Hasleo Backup Suite 5.0.1
Hasleo Backup Suit...harlan4096 — 09:44
GFYI [Official] Ashampoo Christmas 2024...
Merry Christmas and ...Decimuss — 09:32
GFYI [Official] 'AntGROUP Inc. / VCap-d...
Merry Christmas and ...Decimuss — 09:24
GFYI [Official] SpyShelter PRO v15 Chri...
Merry Christmas and ...Decimuss — 09:14

[-]
Birthdays
Today's Birthdays
avatar (47)trideMup
avatar (45)dinatx11
avatar (55)Sk1n1m1n
avatar (37)Mbobbleheads
avatar (55)earthinvestindia
avatar (55)narenonnet
avatar (55)yosepyap10
avatar (55)rwat67
avatar (37)arkabafamilydental
avatar (55)naiduranga077
avatar (55)indianagirl270
avatar (37)fotohandyhuellegeschenk
avatar (55)VW01
avatar (30)claradsouza
avatar (55)MrHumanGuy
avatar (55)chilcuttjc01
Upcoming Birthdays
avatar (49)theoldevext
avatar (44)algratCep
avatar (49)Qlaude2Sap
avatar (40)pieleatisDilia
avatar (42)ilyavvop
avatar (37)urytog
avatar (37)bubblewrapsuit2018
avatar (43)tabthinLem
avatar (38)ixofehym
avatar (50)Josepharelf
avatar (39)kholukrefar
avatar (48)Lauraimike
avatar (50)WilsonWag
avatar (48)StevenPiole
avatar (39)zetssToomy
avatar (46)GornOr
avatar (44)StephenViedy
avatar (46)tuebrUNure
avatar (39)alexeytsa4721
avatar (49)Jamesmog
avatar (37)opeqyrav
avatar (38)theatidere
avatar (47)denisEquivok
avatar (35)mikebrian01
avatar (37)ivanoFloom
avatar (41)Tyreeplurb
avatar (40)uxegihor

[-]
Online Staff
There are no staff members currently online.

>