Google Chrome secure channel customers are receiving an replace that rings alongside a number of safety fixes. Replace v86.0.4240.111 features a repair for zero-day vulnerability CVE-2020-15999 found by a member in Google’s Undertaking Zero crew. This new zero-day vulnerability is reported to be a reminiscence bug within the FreeType font rendering library. This was noticed being abused by a menace actor. Chrome customers are advisable to put in this newest replace by going into the Assist part.
The tech large has confirmed through a weblog put up that it has up to date the Chrome secure channel to 86.0.4240.111 for Home windows, Mac, and Linux customers. This replace will roll out for all customers within the coming week. Chrome customers can replace to the newest model through the built-in replace operate contained in the browser itself. Hit the three dots on the highest proper nook of the browser window and choose Assist > About Google Chrome. Right here it can present you of any pending replace, and after set up, it can ask you to relaunch the browser to complete the updating course of.
CVE-2020-15999 zero-day vulnerability in FreeType was found and reported by safety researcher Sergei Glazunov of Google Undertaking Zero. The tech large says that’s conscious of stories that an exploit for CVE-2020-15999 exists within the wild towards Chrome customers. It’s described as a reminiscence corruption bug and FreeType textual content rendering library has additionally launched model 2.10.four replace as an essential safety launch. The web site states, “That is an emergency launch, fixing a extreme vulnerability in embedded PNG bitmap dealing with.”
Undertaking Zero crew lead Ben Hawkes tweeted that different app distributors of Freetype also needs to undertake the repair a s menace actors might determine to shift their goal from Chrome to different apps that use FreeType.
Is Android One holding again Nokia smartphones in India? We mentioned this on Orbital, our weekly know-how podcast, which you’ll be able to subscribe to through Apple Podcasts, Google Podcasts, or RSS, obtain the episode, or simply hit the play button under.