Advertisements
Google has fixed several vulnerabilities in Chrome that could lead attackers taking control of the victims machine.
There are six security fixes in this release. Three of these flaws allowed an attacker to take control of a browser through use-after-free conditions.
Advertisements
Use-after-free is a condition in which the memory allocation is freed, but the program does not clear the pointer to that memory. This is due to incorrect usage of dynamic memory allocation during an operation.
- CVE-2024-0222: Use after free in ANGLE
- CVE-2024-0223: Heap buffer overflow in ANGLE
- CVE-2024-0224: Use after free in WebAudio
- CVE-2024-0225: Use after free in WebGPU
The use after free conditions existed in Google Chrome before version 120.0.6099.199. To avoid exploiting these vulnerabilities, Google advises users to update to the most recent version of Google Chrome.
