Google on Thursday launched software program updates to deal with yet one more zero-day flaw in its Chrome internet browser.
Tracked as CVE-2022-4135, the high-severity vulnerability has been described as a heap buffer overflow within the GPU element. Clement Lecigne of Google’s Threat Analysis Group (TAG) has been credited with reporting the flaw on November 22, 2022.
Heap-based buffer overflow bugs could be weaponized by menace actors to crash a program or execute arbitrary code, resulting in unintended conduct.
“Google is conscious that an exploit for CVE-2022-4135 exists within the wild,” the tech large acknowledged in an advisory.
But like different actively exploited points, technical specifics have been withheld till a majority of the customers are up to date with a repair and to stop additional abuse.
With the most recent replace, Google has resolved eight zero-day vulnerabilities in Chrome for the reason that begin of the 12 months –
Users are really helpful to improve to model 107.0.5304.121 for macOS and Linux and 107.0.5304.121/.122 for Windows to mitigate potential threats.
Users of Chromium-based browsers resembling Microsoft Edge, Brave, Opera, and Vivaldi are additionally suggested to use the fixes as and once they develop into obtainable.