Chrome 86.0.4240.198 fixes two new 0day

Η released Chrome version 86.0.4240.198 today to fix two 0days already circulating the internet.

Those two mark the fourth and fifth 0days that Google has patched in Chrome in the last three weeks.

The difference this time is that the first three 0days were discovered internally by Google security researchers, these two new ones were detected by anonymous sources.

Details of where and how the new Chrome 0days have been used have not yet been published.

In accordance with changelog Chrome 86.0.4240.198, the two new vulnerabilities are:

CVE-2020-16013 - Described as "inappropriate V8 application", where V8 is the Chrome component that manages JavaScript code.
CVE-2020-16017 – Described as a corruption error s “use after free” in Site Isolation, the Chrome component that isolates them each site between them.

It is not known at this time whether the two vulnerabilities have been used together, or individually. The first security breach was reported on Monday, while the second was reported on Wednesday.

So as you understand you should update your browser immediately.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.081 registrants.

0daychromegoogle

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).