Google issued a warning of a zero-day at program Chrome browser as it is already being used by malicious users.
Vulnerability CVE-2021-21166, αναφέρθηκε από την Alison Huffman στις 11 Φεβρουαρίου και περιγράφεται σαν "object lifecycle issue in audio."
Η Google χαρακτήρισε την ευπάθεια "κρίσιμο" ελάττωμα ασφαλείας και επιδίορθωσε το πρόβλημα στην τελευταία έκδοση του Chrome.
Along with CVE-2021-21166, Huffman reported another serious error, CVE-2021-21165, but also CVE-2021-21163, a data validation issue in reading mode.
The company did not disclose further details on how to operate CVE-2021-21166.
Google's announcement, released on Tuesday, also marked its release Chrome 89 on the fixed channel for Windows, Mac and Linux PCs, The new version is currently out.
Chrome version 89.0.4389.72 also contains a number of security fixes and browser enhancements. In total, 47 errors have been corrected, and a total of eight vulnerabilities are considered of high severity.
This week, the Microsoft also released urgently updates για τέσσερις ευπάθειες zero-day στον Exchange Server. The company urges users to update as soon as possible.