{"id":258943,"date":"2021-10-29T20:02:54","date_gmt":"2021-10-29T18:02:54","guid":{"rendered":"https:\/\/www.borncity.com\/blog\/?p=258943"},"modified":"2021-10-29T20:06:25","modified_gmt":"2021-10-29T18:06:25","slug":"sicherheitsupdate-auf-chrome-95-0-4638-69","status":"publish","type":"post","link":"https:\/\/borncity.com\/blog\/2021\/10\/29\/sicherheitsupdate-auf-chrome-95-0-4638-69\/","title":{"rendered":"Sicherheitsupdate auf Chrome 95.0.4638.69"},"content":{"rendered":"<p><img decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline;\" src=\"https:\/\/borncity.com\/blog\/wp-content\/uploads\/2021\/06\/Chrome-01.jpg\" align=\"left\" \/>[<a href=\"https:\/\/borncity.com\/win\/2021\/10\/29\/sicherheitsupdate-auf-chrome-95-0-4638-69\/\" target=\"_blank\" rel=\"noopener\">English<\/a>]Google hat zum 28. Oktober 2021 ein Sicherheitsupdate des Google Chrome 95.0.4638.69 f\u00fcr Windows, Mac und Linux freigegeben. Es ist ein Sicherheitsupdate, welches als hoch bewertete Schwachstellen schlie\u00dft. Hier ein kurzer \u00dcberblick.<\/p>\n<p><!--more--><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/vg08.met.vgwort.de\/na\/e23430a10ded4cdb966ff8752260d35d\" alt=\"\" width=\"1\" height=\"1\" \/>Im <a href=\"https:\/\/chromereleases.googleblog.com\/\" target=\"_blank\" rel=\"noopener\">Google-Blog<\/a> gibt es <a href=\"https:\/\/chromereleases.googleblog.com\/2021\/10\/stable-channel-update-for-desktop_28.html\" target=\"_blank\" rel=\"noopener\">diesen Beitrag<\/a> mit der kurzen Beschreibung der im Chrome 95.0.4638.54 f\u00fcr den Desktop geschlossenen Schwachstellen.<\/p>\n<ul>\n<li>[$10000][1259864] High CVE-2021-37997 : Use after free in Sign-In. Reported by Wei Yuan of MoyunSec VLab on 2021-10-14<\/li>\n<li>[$7500][1259587] High CVE-2021-37998 : Use after free in Garbage Collection. Reported by Cassidy Kim of Amber Security Lab, OPPO Mobile Telecommunications Corp. Ltd. on 2021-10-13<\/li>\n<li>[$1000][1251541] High CVE-2021-37999 : Insufficient data validation in New Tab Page. Reported by Ashish Arun Dhone on 2021-09-21<\/li>\n<li>[$N\/A][1249962] High CVE-2021-38000 : Insufficient validation of untrusted input in Intents. Reported by Clement Lecigne, Neel Mehta, and Maddie Stone of Google Threat Analysis Group on 2021-09-15<\/li>\n<li>[$N\/A][1260577] High CVE-2021-38001 : Type Confusion in V8. Reported by @s0rrymybad of Kunlun Lab via Tianfu Cup on 2021-10-16<\/li>\n<li>[$N\/A][1260940] High CVE-2021-38002 : Use after free in Web Transport. Reported by @__R0ng of 360 Alpha Lab, \u6f0f\u6d1e\u7814\u7a76\u9662\u9752\u8bad\u961f via Tianfu Cup on 2021-10-16<\/li>\n<li>[$TBD][1263462] High CVE-2021-38003 : Inappropriate implementation in V8. Reported by Cl\u00e9ment Lecigne from Google TAG and Samuel Gro\u00df from Google Project Zero on 2021-10-26<\/li>\n<\/ul>\n<p>Google ist bekannt, dass Exploits f\u00fcr CVE-2021-38000 und CVE-2021-38003 in freier Wildbahn existieren. Details zur Schwachstelle werden aber keine ver\u00f6ffentlicht, bis der Gro\u00dfteil der Nutzer umgestiegen ist. Die Chrome-Version f\u00fcr Windows, Mac und Linux wird in den n\u00e4chsten Tagen \u00fcber die automatische Update-Funktion auf die Systeme ausgerollt. Die aktuelle Build des Chrome-Browsers l\u00e4sst sich auch <a href=\"https:\/\/www.google.com\/intl\/de_de\/chrome\/\" target=\"_blank\" rel=\"noopener\">hier herunterladen<\/a>. (<a href=\"https:\/\/www.heise.de\/news\/Sicherheitsupdate-Angreifer-attackieren-abermals-Chrome-6234937.html\" target=\"_blank\" rel=\"noopener\">via<\/a>)<\/p>\n","protected":false},"excerpt":{"rendered":"<p>[English]Google hat zum 28. Oktober 2021 ein Sicherheitsupdate des Google Chrome 95.0.4638.69 f\u00fcr Windows, Mac und Linux freigegeben. Es ist ein Sicherheitsupdate, welches als hoch bewertete Schwachstellen schlie\u00dft. Hier ein kurzer \u00dcberblick.<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1356,426,185],"tags":[406,4328,4315],"class_list":["post-258943","post","type-post","status-publish","format-standard","hentry","category-google-chrome-internet","category-sicherheit","category-update","tag-chrome","tag-sicherheit","tag-update"],"_links":{"self":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/258943","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/comments?post=258943"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/posts\/258943\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/media?parent=258943"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/categories?post=258943"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/blog\/wp-json\/wp\/v2\/tags?post=258943"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}