[German]Google has released updates to Google Chrome 98.0.4758.102 for Windows, Mac and Linux as of February 14, 2022. The Android browser has been updated to version 98.0.4758.101. The updates close 11 vulnerabilities. Some vulnerabilities are classified as High. Here is a brief overview.
Advertising
The Google blog has this post with the brief description of the vulnerabilities closed in Chrome 102 for desktop.
- [$15000][1290008] High CVE-2022-0603: Use after free in File Manager. Reported by Chaoyuan Peng (@ret2happy) on 2022-01-22
- [$7000][1273397] High CVE-2022-0604: Heap buffer overflow in Tab Groups. Reported by Krace on 2021-11-24
- [$7000][1286940] High CVE-2022-0605: Use after free in Webstore API. Reported by Thomas Orlita on 2022-01-13
- [$7000][1288020] High CVE-2022-0606: Use after free in ANGLE. Reported by Cassidy Kim of Amber Security Lab, OPPO Mobile Telecommunications Corp. Ltd. on 2022-01-17
- [$TBD][1250655] High CVE-2022-0607: Use after free in GPU. Reported by 0x74960 on 2021-09-17
- [$NA][1270333] High CVE-2022-0608: Integer overflow in Mojo. Reported by Sergei Glazunov of Google Project Zero on 2021-11-16
- [$NA][1296150] High CVE-2022-0609: Use after free in Animation. Reported by Adam Weidemann and Clément Lecigne of Google's Threat Analysis Group on 2022-02-10
- [$TBD][1285449] Medium CVE-2022-0610: Inappropriate implementation in Gamepad API. Reported by Anonymous on 2022-01-08
In addition, there are various fixes that Google has found internally during audits. Google is aware of reports that an exploit for CVE-2022-0609 exists in the wild. However, details about the vulnerabilities will not be released until the majority of users have switched over. The Chrome version for Windows, Mac and Linux will be rolled out to systems via the automatic update feature in the next few days. The latest build of the Chrome browser can also be downloaded here. (via)
Advertising
Just wanted to try it