Google Chrome First Weekly Updates Released
Share this:
Google has published the first weekly update for the Chrome browser. Though the regular Chrome releases will still come every four weeks to get security fixes out faster, updates to address security and other high impact bugs will be scheduled weekly.
The latest update has the fixes for five vulnerabilities. Four of them are classified with a high and one as medium. All these vulnerabilities have been reported by external researchers between August 1 and August 7, 2023.
CVE-2023-4430, a use after free vulnerability in Vulkan, in Google Chrome prior to 116.0.5845.110, which allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Vulkan is a modern cross-platform graphics and compute API that provides high-efficiency, low-level access to modern GPUs used in a wide variety of devices from PCs to smartphones.
CVE-2023-4429 is another use after free vulnerability, this time in Loader, in Google Chrome prior to 116.0.5845.110, which allows a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2023-4428 is an out of bounds memory access in CSS, in Google Chrome prior to 116.0.5845.110, which allows a remote attacker to perform an out of bounds memory read via a crafted HTML page.
CVE-2023-4427 is an out of bounds memory access in V8, Google’s open-source JavaScript engine, in Google Chrome prior to 116.0.5845.110, which allows a remote attacker to perform an out of bounds memory read via a crafted HTML page.
CVE-2023-4431 a medium severity out of bounds memory access vulnerability in fonts in Google Chrome prior to 116.0.5845.110, which allows a remote attacker to perform an out of bounds memory read via a crafted HTML page
The latest version on Windows, Mac, or Linux is 116.0.5845.110/.111 and update it to stay safe.
