Advisory for Google Chrome Security Updates

  • NIC-CERT/2022-12/516
  • Date: 2022-12-20
  • CVE ID: Multiple
  • Severity: High

Description:

Google has updated LTS channel to 102.0.5005.193(Platform Version:14695.166.0) for most ChromeOS devices.

Security Issues Fixed:

Google update includes several security fixes in this release which includes vulnerabilities like mojo, audio etc.

Affected Products, CVE IDs and Solution:


This update includes 4security fixes. Below, we highlight fixes that were contributed by external researchers.

CVE IDs:

CVE Id

Description

CVE-2022-4178

Use after free in Mojo

CVE-2022-4179

Use after free in Audio

CVE-2022-4181

Use after free in Forms

CVE-2022-4135

Heap buffer overflow in GPU

References:

https://chromereleases.googleblog.com/