[ad_1]
The new version fixes a total of eight vulnerabilities that affect the desktop versions of the popular browser.
Google released an update last week for its Chrome web browser that fixes a variety of security flaws, including four that have been classified as very serious. The vulnerabilities affect the Windows, macOS, and Linux versions of the popular browser.
As is common, the tech titan doesn’t openly share details about security loopholes until most users have had a chance to update their browsers to the latest version, mitigating the possibility that hackers will threats exploit flaws.
Three of the high severity vulnerabilities are post-release use flaws, with the first security bug indexed as CVE-2020-16037 affecting Chrome’s clipboard component. The second, which is tracked as CVE-2020-16038, resides in the Chrome media component. As for CVE-2020-16039, it affects the browser extensions component. The fourth high severity vulnerability, named CVE-2020-16040, is an insufficient data validation bug in the V8 JavaScript engine.
The update fixes a total of eight vulnerabilities, and Google specifically lists six, where the fixes were contributed by outside researchers. In addition to the four high-severity bugs mentioned above, the tech giant also revealed two more flaws, both classified as medium severity.
The Cybersecurity and Infrastructure Security Agency (CISA) issued a security advisory advising users and sysadmins to update their browser saying: “Google has released Chrome version 87.0.4280.88 for Windows, Mac, and Linux. This release fixes vulnerabilities that an attacker could exploit to take control of an affected system. “
Considering the disclosed vulnerabilities, users would do well to update their browsers to the latest version (87.0.4280.88) as soon as possible. If you have automatic updates enabled, your browser should update itself. You can also manually update your browser by visiting the About Google Chrome section, which can be found under Help on the menu bar.
In recent months, Google released a large number of patches that fix five zero-day vulnerabilities in total.
[ad_2]
