December 1, 2023

Google Chrome has just been updated to version 104. Users are advised to make sure the version 104 update is activated as soon as possible. There are 27 reasons why and they all have ‘security’ stamped upon them.

Google has just confirmed the arrival of Chrome 104 to the stable channel for Windows, Mac, and Linux users. While this important update will start rolling out immediately, Google advises that it could be days or weeks before everyone sees their browser automatically updated.

None of the security issues addressed by Chrome 104 are known to be exploited in the wild already, there are no zero-days

  • Seven of that total are rated as high impact, which is reflected in the $43,000 in bounty payments to the researchers who identified them.
  • Fifteen issues have been awarded a medium impact rating with a further $49,000 paid out in bounty rewards.

The vulnerabilities that got the high ratings, although full details have been reserved until a majority of users have been updated, are as follows:

  • CVE-2022-2603: Use after free in Omnibox.
  • CVE-2022-2604: Use after free in Safe Browsing.
  • CVE-2022-2605: Out of bounds read in Dawn.
  • CVE-2022-2606: Use after free in Managed devices API.
  • CVE-2022-2607: Use after free in Tab Strip.
  • CVE-2022-2608: Use after free in Overview Mode.
  • CVE-2022-2609: Use after free in Nearby Share

Leave a Reply

%d bloggers like this: