Stable Channel Update for Desktop
The Stable channel has been updated to 99.0.4844.84 for Windows, Mac and Linux which will roll out over the coming days/weeks. A full list o...
MrOrz mark this message contains true information
|originally written by MrOrz
2022 年 3 月 Google Chrome 確實有發表此安全性更新,嚴重程度為「高」,建議使用者用 Google Chrome 內建的更新機制升級。
不過,此漏洞的細節截至 2022/3/28 尚未公開,按往例這種高風險漏洞,會等到大多數使用者都升級修補完成後才會公布細節,以免公布的細節遭惡意濫用。截至 3/28,外界只能從嚴重程度、以及比對該漏洞的標題「Type Confusion in V8」,來猜測此漏洞背後的成因與影響範圍。
不過,此漏洞的細節截至 2022/3/28 尚未公開,按往例這種高風險漏洞,會等到大多數使用者都升級修補完成後才會公布細節,以免公布的細節遭惡意濫用。截至 3/28,外界只能從嚴重程度、以及比對該漏洞的標題「Type Confusion in V8」,來猜測此漏洞背後的成因與影響範圍。
References
2022/3/25 Google Chrome 官方公告,內容相當簡短。https://chromereleases.googleblog.com/2022/03/stable-channel-update-for-desktop_25.html
CVE 資料庫公告 - 截至 2022/3/28 尚未公布細節。
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1096
2022/3/25 Chrome releases emergency update to fix CVE-2022-1096 that have been exploited in the wild
https://securityonline.info/cve-2022-1096-chrome/
https://chromereleases.googleblog.com/2022/03/stable-channel-update-for-desktop_25.html
CVE - CVE-2022-1096
The mission of the CVE® Program is to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities.
https://securityonline.info/cve-2022-1096-chrome/
The content above by Cofacts message reporting chatbot and crowd-sourced fact-checking community is licensed under Creative Commons Attribution-ShareAlike 4.0 (CC BY-SA 4.0), the community name and the provenance link for each item shall be fully cited for further reproduction or redistribution.