[German]Microsofthas released a security advisory for the Edge browser as of October 29, 2021, updating the browser to version 95.0.1020.40. The update also closed vulnerabilities reported to the Chromium team.
This update includes a fix for CVE-2021-38000 and CVE-2021-38003, which the Chromium team says is already being exploited. There is no new information in the release notes, but a link to the update page where the following CVEs are listed as closed. Microsoft emailed me the following security information last night.
****************************************************************
Title: Microsoft Security Update Releases
Issued: October 29, 2021
****************************************************************
Summary
=======
he following CVEs were assigned by Chrome. Microsoft Edge
(Chromium-based) ingests Chromium, which addresses these vulnerabilities. Please see
Google Chrome Releases for more information.
See msrc-blog.microsoft.com for more information about third-party CVEs in the Security Update Guide.
* CVE-2021-37997
* CVE-2021-37998
* CVE-2021-37999
* CVE-2021-38000
* CVE-2021-38001
* CVE-2021-38002
* CVE-2021-38003
Revision Information:
=====================
– Version 1.0
– Reason for Revision: Information published.
– Originally posted: October 29, 2021
The browser should update automatically, but can also be downloaded here.
