December 11, 2023

Chrome patched again this time for 3 vulnerabilities including one Zero day. Patches for this zero-day have been released part of Chrome version 80.0.3987.122. The update is available for Windows, Mac, and Linux users, but not Chrome OS, iOS, and Android.

Zero day patched

The zero-day is tracked under the identifier of CVE-2020-6418, and is described only as a “type confusion in V8.”

V8 is Chrome’s component that’s responsible for processing JavaScript code.

A ttype confusion refers to coding bugs during which an app initializes data execution operations using input of a specific “type” but is tricked into treating the input as a different “type.”

The “type confusion” leads to logical errors in the app’s memory and can lead to situations where an attacker can run unrestricted malicious code inside an application.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.