{"id":257624,"date":"2021-09-14T01:07:42","date_gmt":"2021-09-13T23:07:42","guid":{"rendered":"https:\/\/www.borncity.com\/blog\/?p=257624"},"modified":"2021-09-22T10:18:28","modified_gmt":"2021-09-22T08:18:28","slug":"chrome-93-0-4577-82-sicherheitsupdate","status":"publish","type":"post","link":"https:\/\/borncity.com\/blog\/2021\/09\/14\/chrome-93-0-4577-82-sicherheitsupdate\/","title":{"rendered":"Chrome 93.0.4577.82 Sicherheitsupdate"},"content":{"rendered":"<p><img decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline;\" src=\"https:\/\/borncity.com\/blog\/wp-content\/uploads\/2021\/06\/Chrome-01.jpg\" \/>[<a href=\"https:\/\/borncity.com\/win\/2021\/09\/14\/chrome-93-0-4577-82-sicherheitsupdate\/\" target=\"_blank\" rel=\"noopener\">English<\/a>]Google hat zum 13. September 2021 die Stable Version des Google Chrome 93.0.4577.82 f\u00fcr Windows, Mac und Linux freigegeben. Es ist ein Sicherheitsupdate, welches 0-day-Schwachstellen schlie\u00dft. Einige Schwachstellen werden bereits ausgenutzt. Hier ein kurzer \u00dcberblick, was man vom Update erwarten kann.<\/p>\n<p><!--more--><\/p>\n<p>Im <a href=\"https:\/\/chromereleases.googleblog.com\/\" target=\"_blank\" rel=\"noopener\">Google-Blog<\/a> gibt es <a href=\"https:\/\/chromereleases.googleblog.com\/2021\/09\/stable-channel-update-for-desktop.html\" target=\"_blank\" rel=\"noopener\">diesen Beitrag<\/a> mit einer Liste der im Chrome 93.0.4577.82 f\u00fcr den Desktop geschlossenen 11 Schwachstellen. Hier einige hervorgehobene Schwachstellen, die beseitigt wurden.<\/p>\n<ul>\n<li>[$7500][1237533] High CVE-2021-30625: Use after free in Selection API. Reported by Marcin Towalski of Cisco Talos on 2021-08-06<\/li>\n<li>[$7500][1241036] High CVE-2021-30626: Out of bounds memory access in ANGLE. Reported by Jeonghoon Shin of Theori on 2021-08-18<\/li>\n<li>[$5000][1245786] High CVE-2021-30627: Type Confusion in Blink layout. Reported by Aki Helin of OUSPG on 2021-09-01<\/li>\n<li>[$TBD][1241123] High CVE-2021-30628: Stack buffer overflow in ANGLE. Reported by Jaehun Jeong(@n3sk) of Theori on 2021-08-18<\/li>\n<li>[$TBD][1243646] High CVE-2021-30629: Use after free in Permissions. Reported by Weipeng Jiang (@Krace) from Codesafe Team of Legendsec at Qi'anxin Group on 2021-08-26<\/li>\n<li>[$TBD][1244568] High CVE-2021-30630: Inappropriate implementation in Blink . Reported by SorryMybad (@S0rryMybad) of Kunlun Lab on 2021-08-30<\/li>\n<li>[$TBD][1246932] High CVE-2021-30631: Type Confusion in Blink layout. Reported by Atte Kettunen of OUSPG on 2021-09-06<\/li>\n<li>[$TBD][1247763] High CVE-2021-30632: Out of bounds write in V8. Reported by Anonymous on 2021-09-08<\/li>\n<li>[$TBD][1247766] High CVE-2021-30633: Use after free in Indexed DB API. Reported by Anonymous on 2021-09-08<\/li>\n<\/ul>\n<p>Weitere Probleme wurden intern durch Audits und Fuzzing aufgesp\u00fcrt und behoben. Google ist bekannt, dass Exploits f\u00fcr CVE-2021-30632 und CVE-2021-30633 in freier Wildbahn existieren. Die Chrome-Version f\u00fcr Windows, Mac und Linux wird in den n\u00e4chsten Tagen \u00fcber die automatische Update-Funktion auf die Systeme ausgerollt.\u00a0 Die aktuelle Build des Chrome-Browsers l\u00e4sst sich auch <a href=\"https:\/\/www.google.com\/intl\/de_de\/chrome\/\" target=\"_blank\" rel=\"noopener\">hier herunterladen<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>[English]Google hat zum 13. September 2021 die Stable Version des Google Chrome 93.0.4577.82 f\u00fcr Windows, Mac und Linux freigegeben. Es ist ein Sicherheitsupdate, welches 0-day-Schwachstellen schlie\u00dft. Einige Schwachstellen werden bereits ausgenutzt. Hier ein kurzer \u00dcberblick, was man vom Update erwarten &hellip; <a href=\"https:\/\/borncity.com\/blog\/2021\/09\/14\/chrome-93-0-4577-82-sicherheitsupdate\/\">Weiterlesen <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1356],"tags":[406],"class_list":["post-257624","post","type-post","status-publish","format-standard","hentry","category-google-chrome-internet","tag-chrome"],"_links":{"self":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/257624","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/comments?post=257624"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/257624\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/media?parent=257624"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/categories?post=257624"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/tags?post=257624"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}