Government has a warning for Google Chrome customers: Details inside
2 min readThe Indian Computer Emergency Response Team (CERT-In) has issued a high-severity warning for Google Chrome customers. This authorities company operates below the Ministry of Electronics and Information Technology.
In a latest advisory, CERT-In highlighted important vulnerabilities inside Google Chrome, prompting an pressing name for customers to promptly replace their internet browsers. CERT-In’s warning notes that “Multiple vulnerabilities have been reported in Google Chrome which could be exploited by an attacker to bypass security restrictions, execute arbitrary code, disclose sensitive information, and cause denial of Service (DoS) conditions on the targeted system.” These vulnerabilities current a major threat to consumer knowledge and the safety of methods.
The vulnerabilities recognized by CERT-In have an effect on customers who’re utilizing Google Chrome variations previous to 116.0.5845.96/.97 for Windows and Google Chrome variations previous to 116.0.5845.96 for Mac and Linux. Users utilizing these variations are notably weak to potential exploitation of those safety flaws.
The authorities physique explains that these vulnerabilities exist because of points like “use after free” in areas akin to offline mode, system interactions, community communications, audio capabilities, DNS, and extensions. There are additionally issues with implementation in options like fullscreen mode, app launchers, shade administration, autofill, internet sharing, and permission prompts. Additionally, there are issues with sort confusion and out-of-bounds reminiscence entry within the V8 engine, together with heap buffer overflow in parts like ANGLE, Skia, and Mojom IDL. Inadequate validation of untrusted inputs in XML and inadequate coverage enforcement within the Extensions API are additionally a part of the issue.
The advisory offers a listing of vulnerabilities recognized:
CVE-2023-2312
CVE-2023-4349
CVE-2023-4350
CVE-2023-4351
CVE-2023-4352
CVE-2023-4353
CVE-2023-4354
CVE-2023-4355
CVE-2023-4356
CVE-2023-4357
CVE-2023-4358
CVE-2023-4359
CVE-2023-4360
CVE-2023-4361
CVE-2023-4362
CVE-2023-4363
CVE-2023-4364
CVE-2023-4365
CVE-2023-4366
CVE-2023-4367
CVE-2023-4368
CERT-In recommends customers to replace their Google Chrome browsers instantly in response to those regarding safety points. Fortunately, Google has already launched the newest Chrome replace to handle these vulnerabilities. To guarantee system security, customers are suggested to comply with these steps:
Access Settings: Open Google Chrome and click on on the three vertical dots within the higher right-hand nook to entry the menu.
Select “About Chrome”: Scroll down the menu and click on on “About Chrome.”
Check for Updates: Chrome will robotically verify for updates. If a brand new replace is accessible, it should begin downloading.
Install the Update: Once the replace is downloaded, comply with the on-screen prompts to finish the set up course of.
Catch all of the Technology News and Updates on Live Mint.
Download The Mint News App to get Daily Market Updates & Live Business News.
More
Less
Updated: 22 Aug 2023, 01:10 PM IST