Google Chrome fixes the first set of vulnerabilities in 2024

Google has fixed several vulnerabilities in Chrome that could lead attackers taking control of the victims machine.

There are six security fixes in this release. Three of these flaws allowed an attacker to take control of a browser through use-after-free conditions.

Use-after-free is a condition in which the memory allocation is freed, but the program does not clear the pointer to that memory. This is due to incorrect usage of dynamic memory allocation during an operation.

• CVE-2024-0222: Use after free in ANGLE
• CVE-2024-0223: Heap buffer overflow in ANGLE
• CVE-2024-0224: Use after free in WebAudio
• CVE-2024-0225: Use after free in WebGPU

The use after free conditions existed in Google Chrome before version 120.0.6099.199. To avoid exploiting these vulnerabilities, Google advises users to update to the most recent version of Google Chrome.