Advisory for Google Chrome Security Updates

  • NIC-CERT/2022-12/512
  • Date: 2022-12-14
  • CVE ID: Multiple
  • Severity: High

Description:

Google has updated LTS channel to 108.0.5359.124 for Mac and Linux and108.0.5359.124/.125 forWindows,which will roll out over the coming days/weeks.

Security Issues Fixed:

Google update includes several security fixes in this release which includes vulnerabilities like blink media, aura etc.

Affected Products, CVE IDs and Solution:


This update includes 5security fixes. Below, we highlight fixes that were contributed by external researchers.

CVE IDs:

CVE Id

Description

CVE-2022-4436

Use after free in Blink Media.

CVE-2022-4437

Use after free in Mojo IPC

CVE-2022-4438

Use after free in Blink Frames.

CVE-2022-4439

Use after free in Aura.

CVE-2022-4440

Use after free in Profiles.

References:

https://chromereleases.googleblog.com/