Best Top Reviews Online

Google Releases New Chrome Browser Patch to Address Yet Another Zero-Day Vulnerability

Google released an out-of-band security update on Friday to patch a zero-day vulnerability actively exploited in its Chrome web browser.

The critical vulnerability identified as CVE-2022-4262 is a type of confusion flaw in the V8 JavaScript engine. On November 29, 2022, Clement Lecigne of Google’s Threat Analysis Group (TAG) is credited with reporting the issue.

Type confusion vulnerabilities could be exploited by threat actors to perform out-of-bounds memory access or to cause a system crash and arbitrary code execution.

According to the NIST’s National Vulnerability Database, “a remote attacker may exploit heap corruption via a specially crafted HTML page.”

Google acknowledged that the vulnerability was being actively exploited but refrained from disclosing additional information to prevent further abuse.

Google has addressed four actively exploited type confusion vulnerabilities in Chrome since the beginning of the year. It’s also the ninth zero-day vulnerability that attackers have exploited in 2022 –

  • CVE-2022-0609 – Use-after-free in Animation
  • CVE-2022-1096 – Type confusion in V8
  • CVE-2022-1364 – Type confusion in V8
  • CVE-2022-2294 – Heap buffer overflow in WebRTC
  • CVE-2022-2856 – Insufficient validation of untrusted input in Intents
  • CVE-2022-3075 – Insufficient data validation in Mojo
  • CVE-2022-3723 – Type confusion in V8
  • CVE-2022-4135 – Heap buffer overflow in GPU

Users are advised to upgrade to version 108.0.5359.94 for macOS and Linux, and version 108.0.5359.94/.95 for Windows, to mitigate potential security risks.

Users of Chromium-based browsers such as Microsoft Edge, Brave, Opera, and Vivaldi should also apply the updates as soon as they become available.

Why Trust Us?

Best Top Reviews Online was established in 2018 to provide our readers with detailed, truthful, and impartial advice on what to buy. We now have millions of monthly users from all over the world and annually evaluate over a thousand products.

The above article was written by the BestTopReviewsOnline team, which consists of some of the most knowledgeable technical experts in the United States. Our team consists of highly regarded writers with vast experience in smartphones, computer components, technology apps, security, and photography, among other fields.

Related Stories

  • All Post
  • Best Picks
  • Explainers
  • How To
  • News
  • Versus
Many Businesses Have Not Yet Patched The Citrix Flaw

February 8, 2020

One in five businesses has not yet patched this critical vulnerability. Even though Positive Technologies disclosed a critical vulnerability in Citrix software that put 80,000 businesses in 158 countries at risk, one in five businesses have yet to patch the…

Get more info

Deals

Reviews

Best Products

Buying Guides

Contact Us

About Us

We provide a platform for our customers to rate and review services and products, as well as the stores that sell them. We research and compare the most popular brands and models before narrowing it down to the top ten, providing you with the most comprehensive and reliable buying advice to help you make your decision.

Disclaimer

BestTopReviewsOnline.com is a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for sites to earn advertising fees by advertising and linking to Amazon.com. As an Amazon Associate I earn from qualifying purchases.

 

Address & Map

20 S Santa Cruz Ave, Suite 300, Los Gatos, CA 95030, United States

© 2022 BestTopReviewsOnline.com Pty. Ltd. All Rights Reserved. Licensing: All third-party trademarks, images, and copyrights used on this page are for comparative advertising, criticism, or review. As this is a public forum where users can express their opinions on specific products and businesses, the opinions expressed do not reflect those of BestTopReviewsOnline.com.