Categories
Internet

Google Chrome 0-day, update your browser now

If you are using the Google Chrome browser on Windows, Mac or Linux you need to update it as soon as possible. A vulnerability has been discovered, a rather severe 0-day.

Security flaws are implicit in a computer system. Nothing is 100% certain. Being a tool that we use daily it is very important that we always have our browsers up to date.

14 security issues resolved

The internet services company has deployed an urgent browser update to resolve 14 newly discovered security issues, including a zero-day flaw that it says is being actively exploited.

Tracked as CVE-2021-30551,the vulnerability is caused by a type confusion issue in its open source V8  and JavaScript engine.  Sergei Glazunov  of Google Project Zero is credited with discovering and reporting on the flaw.

How to update your browser

The easiest way to update the browser is to put this in a new chrome tab: chrome://settings/help. You’re going to see what’s coming in Fig. 1 and you’re only going to have to click RESET if there’s a new version.

google chrome
Figure 1. Chrome information with its version and the ability to update

Chrome users can also update to the latest version (91.0.4472.101) by following the PATH SETTINGS > HELP > About Google Chrome.

How these 0-day errors are detected

Google has a team that looks for these errors. In addition you can report yourself if you detect an error in the browser. Many of the security holes are detected using AddressSanitizer,  MemorySanitizer,  UndefinedBehaviorSanitizer, Control Flow Integrity,  libFuzzer,or  AFL.

A rather interesting way is to follow the chronology of all the follow-up holes that are detected. The https://bugs.chromium.org/p/chromium/issues/list?can=2&q= page shows you that timeline.

Leave a Reply