[German]Google has released a slew of security updates for Google Chrome in the 107 branch in the stable channel for Mac, Linux and Windows as well as for Android on November 24, 2022. The updates address vulnerabilities that have already been exploited.
Google Chrome Chrome 107.0.5304.121/122 (Stable Channel)
The relevant entry for Chrome 107.0.5304.121107.0.5304.110/107 in the Stable Channel can be found on the Google blog. The stable channel has been updated to 107.0.5304.121 for Mac and Linux and 107.0.5304.121/.122 for Windows. The update closes the following vulnerability, which is already being exploited.
$NA] High CVE-2022-4135: Heap buffer overflow in GPU. Reported by Clement Lecigne of Google's Threat Analysis Group on 2022-11-22
Google does not provide more detailed information about vulnerabilitiesm but writes that exploitation has been observed in the wild. Chrome will be rolled out to systems via the automatic update feature in the next few days. One can (and in this case should) also update the browser manually (via the menu and the About Google Chrome command). The latest build of the Chrome browser can also be downloaded here. (via)
Google Chrome 107.0.5304.141 for Android
The relevant entry for the Google Chrome browser states that version 107.0.5304.141 will be released for Android in the Google Play Store in the coming days. The update contains the same security fixes as the corresponding desktop versions (see above).
Cookies helps to fund this blog: Cookie settings