Chrome 109 Patches 17 Vulnerabilities By Orbit Brain January 11, 2023 0 225 views House › VulnerabilitiesChrome 109 Patches 17 VulnerabilitiesBy Ionut Arghire on January 11, 2023TweetGoogle on Tuesday introduced the discharge of Chrome 109 within the secure channel with patches for 17 vulnerabilities, together with 14 bugs reported by exterior researchers.Many of the externally reported safety defects are medium- and low-severity flaws, with solely two of them rated ‘excessive severity’.These embody a use-after-free situation in Overview Mode (CVE-2023-0128), and a heap buffer overflow bug in Community Service (CVE-2023-0129). Google says it paid bug bounties of $4,000 and $2,000 for these vulnerabilities, respectively.A complete of eight medium-severity bugs had been resolved with the most recent browser iteration, 5 of that are described as inappropriate implementation flaws in Chrome elements reminiscent of Fullscreen API, Iframe Sandbox, and Permission Prompts.The remaining points embody two use-after-free vulnerabilities in Cart and a heap buffer overflow bug in Platform Apps.Chrome 109 additionally patches 4 externally reported low-severity vulnerabilities.Apparently, Google notes that the very best bug bounty reward was paid out for one of many low-severity points addressed this week, specifically CVE-2023-0138, a heap buffer overflow bug within the libphonenumber element.The researcher who recognized this situation obtained a $8,000 reward, whereas the very best bug bounty for a medium-severity situation was $5,000.In whole, Google paid out $39,000 in bug bounty rewards to the reporting researchers, however the closing quantity could be increased, as the corporate has but to find out the reward for one of many medium-severity points.The newest Chrome iteration is presently rolling out as model 109.0.5414.74 for Linux, model 109.0.5414.74/.75 for Home windows, and model 109.0.5414.87 for macOS.Google made no point out about any of those vulnerabilities being exploited in malicious assaults. Final 12 months, the web big patched 9 zero-days within the browser.Associated: Chrome 108 Patches Excessive-Severity Reminiscence Security BugsAssociated: Google Pays $45,000 for Excessive-Severity Vulnerabilities Present in ChromeAssociated: Google Pays Out Over $50,000 for Vulnerabilities Patched by Chrome 107Get the Every day Briefing Most CurrentMost LearnChrome 109 Patches 17 VulnerabilitiesCybercrime Group Exploiting Previous Home windows Driver Vulnerability to Bypass Safety MerchandiseBritish Manufacturing Agency Morgan Superior Supplies Investigating Cyberattack251ok Impacted by Knowledge Breach at Insurance coverage Agency Bay Bridge DirectorsSAP’s First Safety Updates for 2023 Resolve Essential VulnerabilitiesUnpatchable {Hardware} Vulnerability Permits Hacking of Siemens PLCsEU Tells TikTok Chief To Respect Knowledge Privateness Legal guidelinesMicrosoft Patch Tuesday: 97 Home windows Vulns, 1 Exploited Zero-DayIntel Provides TDX to Confidential Computing Portfolio With Launch of 4th Gen Xeon ProcessorsAdobe Plugs Safety Holes in Acrobat, Reader Software programOn the lookout for Malware in All of the Incorrect Locations?First Step For The Web’s subsequent 25 years: Including Safety to the DNSTattle Story: What Your Pc Says About YouBe in a Place to Act By way of Cyber Situational ConsciousnessReport Exhibits Closely Regulated Industries Letting Social Networking Apps Run Rampant2010, A Nice Yr To Be a Scammer.Do not Let DNS be Your Single Level of FailureMethods to Determine Malware in a BlinkDefining and Debating Cyber WarfareThe 5 A’s that Make Cybercrime so EngagingMethods to Defend Towards DDoS AssaultsSafety Budgets Not in Line with ThreatsAnycast – Three Causes Why Your DNS Community Ought to Use ItThe Evolution of the Prolonged Enterprise: Safety Methods for Ahead Considering OrganizationsUtilizing DNS Throughout the Prolonged Enterprise: It’s Dangerous EnterpriseSecurityWeek PodcastShare this:FacebookXPrintEmailLinkedInRedditTwitterTumblrPinterestTelegramWhatsApp browser buffer overflow Chrome Google patch software update use-after-free vulnerability Orbit Brainhttps://orbitbrain.com/ Orbit Brain is the senior science writer and technology expert. Our aim provides the best information about technology and web development designing SEO graphics designing video animation tutorials and how to use software easy waysand much more. Like Best Service Latest Technology, Information Technology, Personal Tech Blogs, Technology Blog Topics, Technology Blogs For Students, Futurism Blog.
VMware Patches Critical Vulnerability in End-of-Life ProductIntroducing the Cyber Security News VMware Patches Critical Vulnerability in End-of-Life Product.... October 27, 2022 Cyber Security News
French Hospital Cancels Operations After CyberattackIntroducing the Cyber Security News French Hospital Cancels Operations After Cyberattack.... December 5, 2022 Cyber Security News
North Korean Hackers Exploit Dell Driver Vulnerability to Disable Windows SecurityIntroducing the Cyber Security News North Korean Hackers Exploit Dell Driver Vulnerability to Disable Windows Security.... October 3, 2022 Cyber Security News
Okta Says Customer Data Compromised in Twilio HackIntroducing the Cyber Security News Okta Says Customer Data Compromised in Twilio Hack.... August 29, 2022 Cyber Security News
Anxiously Awaited OpenSSL Vulnerability’s Severity Downgraded From Critical to HighIntroducing the Cyber Security News Anxiously Awaited OpenSSL Vulnerability’s Severity Downgraded From Critical to High.... November 1, 2022 Cyber Security News
Email Hack Hits 15,000 Business Customers of Australian Telecoms Firm TPGIntroducing the Cyber Security News Email Hack Hits 15,000 Business Customers of Australian Telecoms Firm TPG.... December 15, 2022 Cyber Security News
Pantera Capital Plans $250M Solana (SOL) Buy, Analyst Predicts Record Rally Toward $1000March 8, 2024 77
Ethereum Blockchain Now Has A Modernized Version of Bitcoin (BTC) But With A Much Lower SupplyMarch 9, 2024 71
Bitcoin ETF Netflows May Experience Rebound If This Price Is Attained, Analyst ExplainsMarch 23, 2024 70