Cybersecurity & InfoSec

Zero-day vulnerability in Chrome

A 0 day vulnerability has been discovered in Chrome that allows an attacker to use a simple html file to slip a malicious program into an unreleased memory location that can be misused in the future.

This is a very serious vulnerability that allows an attacker to execute code on your computer.
The Chromium development team has not disclosed the details of this vulnerability, there is no information on how to exploit it, which means there is still time to update Chromium.

You should check your Chromium build version, you can do this by following the Chromium self-link.
chrome://settings/help

Find the line:
Version {build version} (Official build) (arm64)

The vulnerability has been fixed in the following builds
Mac: 124.0.6367.201 or 124.0.6367.202
Windows: 124.0.6367.201

Linux: the fix is not yet available, so for now you should use Chrome at your own risk (i.e. don't click on unfamiliar links and be careful) and wait for the next update.

If you have a build version from the list or higher, you're fine.