Google releases fix for zero-day exploit in Chrome

Google releases fix for zero-day exploit in Chrome

Also, seriously, update your Chrome installs... like right this minute.

Talking specifically about this exploitable bug, Chrome has chosen to keep the details under the hood to make sure that the majority of the users update their browsers before the flaw is made public. "Reported by Clement Lecigne of Google's Threat Analysis Group on 2019-02-27", the update reveals.

Today's blog post provides these much-needed details, with the company revealing the existence of the Windows 7 zero-day, which attackers were using together with the Chrome zero-day in coordinated attacks. ZDnet reports that the hack exploited a security flaw named CVE-2019-5786, a patch to this issue was included in a version of Chrome released on March 1st; the version number was 72.0.3626.121. "We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven't yet fixed".

Villar leads other Philippine billionaires on Forbes' richest list
Asia-Pacific had the biggest drop in its billionaire population, with 60 fewer holding 10-figure fortunes. Of the 2,153 global billionaires, 21 are Israelis, according to the 2019 Forbes World Billionaires list.

The security issue tracked as CVE-2019-5786 and rated by the Google Chrome team as high severity is a use-after-free flaw in the browser's FileReader API, an API created to allow the browser to access and read locally stored files.

Search giant Google has urged its users to immediately update their Chrome browsers after discovering that a zero-day vulnerability was being actively exploited. You will be shown your current browser version and be alerted if you have an update pending. This time around, a flaw in Chrome's implementation of the FileReader API allowed sites to break out of their sandbox and execute native code. A mark just needs to be lured into opening a booby-trapped website from, say, an instant-messenger link or email, or viewing a malicious advert, using a vulnerable version of Chrome to potentially fall victim. Or you might already be patched.

Related News:



Most liked

National Basketball Association free agency rumors: Warriors, 76ers eyeing Bogut
Golden state the number 1 team in the Western Conference On A Losing Streak, Yes On A Losing Streak They Have Lost Two Back To Back Games.

Opening day set for Star Wars: Galaxy's Edge
Meanwhile, Disney Hollywood Studios in Disney World will launch its version of Galaxy's Edge near the end of summer, on August 29. On Rise of the Resistance , guests will be taken prisoner aboard a Star Destroyer and must fight to escape.

Porto beat Roma with extra-time VAR penalty
Alex Telles scored an extra-time penalty following a VAR review to send Porto through to the Champions League quarter-finals at the expense of Roma .

Volvo's Polestar 2 picks a fight with Tesla's Model 3
Polestar will make its formal public debut at the Geneva Motor Show next month, with production set to begin in early 2020. Volvo is putting the Tesla Model 3 on notice, and is doing so with the reveal of its new Polestar 2 electric vehicle .

Walton salutes LeBron 'greatness' after eclipsing Jordan's tally
LeBron James has added another feather in his cap in terms of the ongoing debate between himself and Michael Jordan . James needs to score 6,077 points to set a new scoring record, which will likely take at least four seasons.

London Patient Cured Of HIV/AIDS
For others, the technique simply didn't work, leading some to question whether the Berlin patient's success was simply an anomaly. Gupta noted that the man's HIV viral load could still rebound. 20 years ago, times were bleak for those diagnosed with the virus.

Arsenal boss Emery: We need to control Ben Arfa
The hosts will be without M'Baye Niang and defender Hamari Traore, who are both suspended. "We are obliged to make them happy". But for example in this match, we don't have an excuse because we've had time to prepare well.

Seven members of one family killed in deadly Alabama tornadoes
The tornado swept up and scattered the debris so widely that the metal frames of two of those homes could not even be located. Sheriff Jay Jones said at a news conference Monday morning that he anticipated that the death toll would rise.

Damaging Wind Likely Sunday — WEATHER AUTHORITY ALERT
Follow our weather team on Facebook! A windy Sunday in the east: We certainly aren't the only ones dealing with gusty winds today. The Massachusetts Department of Fire Services tweeted that there had been reports of power outages across the state.

Royal Family gathers to celebrate 50 years of the Prince of Wales
The event marked the first time the duchesses have been pictured together since Christmas Day. Then he suddenly announced: "I'm now going to try and drag my wife on stage".

Nintendo Labo VR Kit Announced for Switch
The VR Starter Set, meanwhile, includes the Switch software, but only the materials needed to build the VR Goggles and Blaster. The Nintendo Labo: VR Kit - Starter Set + Blaster and complete Nintendo Labo: VR Kit will be available in stores on 12 April.

One killed, 30 injured in Jammu grenade attack
Police have launched a massive hunting operation, with sniffer dogs and forensic experts rushing to the spot. The area was cordoned off after the explosion but the militant merged into the crowd and escaped.

Several buildings in separate cities evacuated over suspicious packages
The packages - A4-sized white envelopes - had Irish stamps on them and contained small improvised explosives devices . Other sites closed are the Isabella Elder Building, James McCune Smith Learning Hub and the Joseph Black Building.

China increases defence budget by 7.5% to $177.61 billion
Li also mentioned that, over the period of two years, China is to reduce or lower some charges for railway and ports. According to Li, these policies will cut costs for businesses by almost RMB 2 trillion (US$298.3 billion).

Child star from 'School of Rock' caught stealing Florida guitars
Back in 2003, the world of music was delighted to see the premiere of Richard Linklater's musical comedy, School Of Rock . NBC News reports that Gaydos then stole a $1,900 guitar from Sam Ash Music Store on February 11.