Google has released its third urgent Chrome update, which fixes a new flaw in the popular desktop web browser. This is the third urgent Chrome update.
The Stable Channel Update for Google Chrome’s desktop form, released on Thursday, pushes the browser to version 100.0.4898.127 on macOS, Windows, and Linux.
According to Google, the update will be sent out over the next several days and weeks, although customers may wish to force the upgrade sooner.
The update contains two security updates, one of which is a “type confusion” vulnerability identified as CVE-2022-1364. When a member of Google’s Threat Analysis Group found the flaw on April 13, Google quickly released a fix.
The flaw in question is thought to be a high-severity zero-day, which attackers are actively exploiting. Once it’s been run, it can make a browser crash or give an error, allowing someone else to run code.
The fault is identical to one Google fixed on March 26th, which included another “type misunderstanding” flaw in Chrome’s V8 JavaScript engine. The current attack, once again, employs the same vector of the V8 JavaScript engine.
According to Google, it is “aware that an exploit for CVE-202201364 exists in the wild,” which helped to speed up the production of a remedy. Rather than providing specific details of the flaw, Google says it is blocking access to that information until “the majority of users have been updated” and so safeguarded.
The user may be automatically updated to the latest version, but it can also be done manually on macOS by choosing “Chrome” in the main menu, followed by “About Google Chrome.” Click “Relaunch” after the update has been downloaded.
