Google has released a Chrome update to version 96.0.4664.110 for Windows, Mac and Linux (and version 96.0.4664.104 for Android) as of December 13, 2021. This is a security update that closes a critical vulnerability.
The Google blog has one a brief description of the vulnerabilities that Chrome 96.0.4664.110 fixes for desktops.
- [$ NA] [1263457] Critical CVE-2021-4098: Insufficient data validation in Mojo. Reported by Sergei Glazunov of Google Project Zero on 2021-10-26
- [$ 5000] [1270658] High CVE-2021-4099: Use after free in Swiftshader. Reported by Aki Helin of Solita on 2021-11-16
- [$ 5000] [1272068] High CVE-2021-4100: Object lifecycle issue in ANGLE. Reported by Aki Helin of Solita on 2021-11-19
- [$ TBD] [1262080] High CVE-2021-4101: Heap buffer overflow in Swiftshader. Reported by Abraruddin Khan and Omair on 2021-10-21
- [$ TBD] [1278387] High CVE-2021-4102: Use after free in V8. Reported by Anonymous on 2021-12-09
Google reports from CV-2021-4102 vulnerability exploit. However, the details of the vulnerabilities will not be published until the majority of users have upgraded to the latest version.
The new version of Chrome for Windows, Mac and Linux is released on the systems via the auto-update feature and you will see it in the coming days. You can also download the current version of Chrome browser from here.