Google Pushes for an Urgent Chrome Update to Fix the 8th Zero Day in 2022

The update notice states that Google is aware of an exploit for CVE-2022-435 in the wild.

Google withheld information about the vulnerability in order to limit malicious exploitation. Chrome users will need to wait for the security update to be applied.

“Access to bug details may be restricted until the majority of users have been updated with a fix. If the bug is found in third-party libraries that are dependent on it, we will keep those restrictions. Google

Heap buffer overflow can result in data being written to unrestricted (often adjacent) locations without any check.

To manipulate an application’s execution path, attackers may use heap buffer overload to overwrite its memory. This could result in unrestricted access to information or arbitrary code execution.

Chrome users should upgrade to version 107.0.5304.121/122 Windows, and 107.0.5304.122 Mac and Linux. This addresses CVE-2022-4355.

You can update Chrome by going to Settings – About Chrome. Wait for Chrome to download the latest version. Restart Chrome.

Chrome version 107.0.5304.121/122 addresses the eighth zero-day exploited vulnerability in this year’s Chrome. This indicates the high level of interest from attackers to stop the widely used browser.

Chrome users are advised to upgrade their browsers as soon as possible to prevent any exploitation attempts.