Scribd
Upload
27 views2 pages

CERT-In Vulnerability Notes - Google Chrome

Multiple vulnerabilities were reported in Google Chrome that could allow a remote attacker to compromise affected systems. The vulnerabilities exist in Google Chrome's ANGLE, WebAudio, and WebGPU components and can be exploited by persuading users to visit a malicious website. Users should update to Chrome versions 120.0.6099.199 or later listed as patches on Google's security blog to prevent exploitation. The vulnerabilities receive a severity rating of high.

Uploaded by

bimaf19491
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
27 views2 pages

CERT-In Vulnerability Notes - Google Chrome

Multiple vulnerabilities were reported in Google Chrome that could allow a remote attacker to compromise affected systems. The vulnerabilities exist in Google Chrome's ANGLE, WebAudio, and WebGPU components and can be exploited by persuading users to visit a malicious website. Users should update to Chrome versions 120.0.6099.199 or later listed as patches on Google's security blog to prevent exploitation. The vulnerabilities receive a severity rating of high.

Uploaded by

bimaf19491
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 2

CERT-In Vulnerability Notes https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES0...

CERT-In Vulnerability Note CIVN-2024-0003


Multiple Vulnerabilities in Google Chrome for Desktop

Original Issue Date:January 09, 2024

Severity Rating: HIGH

Software Affected

• Google Chrome for Desktop versions prior to 120.0.6099.199 (for Mac and Linux)
• Google Chrome for Desktop versions prior to 120.0.6099.199/200 (for Windows)

Overview

Multiple vulnerabilities have been reported in Google Chrome which could be exploited by a remote attacker to compromise the
targeted system.

Description

These vulnerabilities exist in Google Chrome due to heap buffer overflow in ANGLE; use-after-free error in ANGLE, WebAudio,
WebGPU. A remote attacker could exploit these vulnerabilities by persuading a victim to visit a specially crafted Web page.

Successful exploitation of these vulnerabilities could allow the remote attacker to compromise the targeted system.

Solution

Apply appropriate updates as mentioned by the vendor


https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop.html

Vendor Information

Google Chrome
https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop.html

References

Google Chrome
https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop.html

CVE Name
CVE-2024-0222
CVE-2024-0223
CVE-2024-0224
CVE-2024-0225

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Contact Information

Email: info@cert-in.org.in
Phone: +91-11-24368572

Postal address

Indian Computer Emergency Response Team (CERT-In)


Ministry of Electronics and Information Technology
Government of India
Electronics Niketan

1 of 2 11-01-2024, 12:17 am
CERT-In Vulnerability Notes https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES0...

6, CGO Complex, Lodhi Road,


New Delhi - 110 003
India

2 of 2 11-01-2024, 12:17 am

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy