If your Google Chrome construct has but to replace routinely, now could be a great time to begin guide replace (opens in new tab), the corporate has stated.
Google has launched Chrome 104, the following model of its in style browser (opens in new tab) containing fixes to a few high-severity flaws.
Chrome 104 has simply been launched for Windows, Mac, and Linux, and it addresses a complete of 27 flaws, 15 of which might be of medium severity, and 7 of which might be of excessive severity. Google says those aren’t being exploited within the wild at this time, however that’s one thing that may alternate at any second. The excessive severity flaws impact the Omnibox, Safe Browsing, Dawn WebGPU, in addition to Nearby Share, and a number of the medium severity flaws is a side-channel knowledge leakage factor affecting the keyboard enter.
Replacing U2F API
The Omnibox factor, a memory-related “use after loose” flaw, is tracked as XCVE-2022-2603, with Google reportedly paying a $15,000 bounty to the finders. The Safe Browsing flaw is tracked as CVE-2022-2604, whilst the Nearby Share is tracked as CVE-2022-2609.
As same old, Google is being tight-lipped on the main points, till the vast majority of endpoints were patched.
For Chrome 104, Google has additionally changed U2F API, the unique safety key API for Chrome, with Web Authentication (WebAuthn) API.
The latter were same old for some 3 years now, however in spite of it being round for lengthy, some internet sites will nonetheless wish to migrate to the brand new API.
- Get final software coverage with the easiest antivirus (opens in new tab)
Via: ZDNet (opens in new tab)