Google released the version today, Wednesday 90.0.4430.85 of the program tourChrome for all supported Windows, Mac and Linux desktops.
The release contains seven security fixes, including a zero-day vulnerability that usesalready by malicious users.
Η zero-day vulnerability, which has the identifier CVE-2021-21224, was characterized as "type confusion in V8".
Chrome Technical Manager Srinivas Sista reports and analyzes five vulnerabilities: CVE-2021-21222 heap buffer Overflow in V8, CVE-2021-21223 integer overflow in Mojo, CVE-2021-21225 out of bounds memory access in V8, CVE-2021-21226 use after free in navigation, and CVE-2021-21224 type confusion in V8.
"Google knows that exploits for CVE-2021-21224 are already underway," he said.
Srinivas Sista thanked five researchers for their contribution and added that his own department was responsible for a wide range of corrections.