Google Chrome has received a security patch that addresses two exploited zero-day security holes. This is the third time in three months that the browser has updated to counter such threats.
The first vulnerability, CVE-2021-38000, is a design flaw caused by 'insufficient validation of unreliable input' regarding the Intents function. The second, CVE-2021-38003, is described as an inappropriate implementation in the V8 JavaScript engine.
The two flaws exploited by hackers
Google admits that the two security flaws were exploited, but without specifying in detail in what proportions or for what purpose. They are fixed with browser build 95.0.4638.69, and we advise you to update Chrome as soon as possible. The update will be deployed in the days and weeks to come to all users.
These are the 13th and 14th zero-day flaws patched by Google for Chrome this year, for a third fix in three months. Already at the end of September, two other vulnerabilities of this type had been corrected.
.png "English"){kind=small}
Post a Comment