- Google fixed a high-severity Chrome zero-day along with two medium-severity bugs
- The vulnerability is likely related to a LibANGLE buffer overflow that allows memory corruption and remote code execution.
- This marks Chrome’s eighth zero-day fix this year, highlighting continued attacks targeting browsers.
Google recently updated its Chrome browser to protect against a high-severity vulnerability that was being abused in the wild as a zero-day.
In a security advisory published earlier this week, the browser giant said it fixed three bugs for Chrome, including two medium severity and one high severity.
For the latter, Google said it was “aware that an exploit exists in the wild.” No other details were revealed to protect users as the patch rolls out. This is standard Google practice: hiding key details from users, but also from cybercriminals and other hackers.
Block the browser
The exact dates the patch is expected to roll out are unknown, but Google confirmed that it will reach most users “in the coming days/weeks.” The stable channel was updated to 143.0.7499.109/.110 for Windows/Mac and 143.0.7499.109 for Linux, and when we checked, the update was already installed.
There is no official confirmation on what the bug is, but according to the Chromium bug ID, it was found in Google’s open source LibANGLE library, BleepingComputer reports. LibANGLE is a translation layer that converts OpenGL ES calls to other graphics APIs, typically Direct3D on Windows. It allows browsers and applications to run WebGL and OpenGL ES content even if the operating system does not support those APIs natively.
The same source states that the bug is most likely a buffer overflow vulnerability in ANGLE’s Metal renderer, caused by an inappropriate buffer size. Criminals could have used the bug to corrupt memory, crash the browser, leak sensitive data, or even execute arbitrary code remotely.
This is the eighth zero-day vulnerability that Google fixed in its Chrome browser. Last year, the company addressed ten of these vulnerabilities.
Browsers are one of the most used software programs on a computer and as such, they are always the target of different hacking campaigns.
Through beepcomputer
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to receive news, reviews and opinions from our experts in your feeds. Be sure to click the Follow button!
And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form and receive regular updates from us on WhatsApp also.
