Google today released version 88.0.4324.150 of the Chrome browser for Windows, Mac and Linux. THE current release contains only one fix for a zero-day vulnerability already in use.
The zero-day, assigned the identifier CVE-2021-21148, is described as a “heap Overflow” in the V8 JavaScript engine.
Google reports that the bug is already being used in attacks and that the researcher security Mattias Buelens reported the issue on January 24th.
Two days after the Buelens report, the team Google's security team has published a report on attacks carried out by North Korean hackers against a cyber security community.
Some of these attacks attempted to lure security researchers to a blog where attackers were exploiting a browser zero-day to run malware in researchers' systems.
As you can see, it is recommended that you immediately upgrade to Google Browser.
