Google Releases Emergency Patch for Chrome
Google has released its first emergency patch for the Chrome browser. It must close a significant zero-day leak.
The security update is included in version 112.0.5615.121 of the Windows, Mac, and Linux web browser. It will be released to the general public in the coming days and weeks, and Google recommends that users install the update as soon as possible.
With the patch, the tech giant wants to solve a so-called ‘type confusion’ leak in the Chrome V8 JavaScript engine. Google reports that the vulnerability is already being actively exploited. However, this has not been disclosed; Google states that it will only provide more information once more users have installed the available update.
The vulnerability has been identified as CVE-2023-2033. The vulnerability was discovered by Google’s Threat Analysis Group (TAG). The Dzt team focuses specifically on countering cyber attacks by attackers who receive government support and attacks against Google and Google users.