Google has released Chrome 104.0.5112.79 (Mac/Linux) and 104.0.5112.79/80/81 (Windows), with fixes for 27 vulnerabilities (7 rated High severity). Additionally, Google also published new Chrome security updates for iOS and Android.
An attacker could exploit these vulnerabilities to take control of impacted systems.
The latest Chrome 104 security update patched 27 vulnerabilities, to include the following 7 High severity vulnerabilities contributed by external researchers:
- CVE-2022-2603: Use after free in Omnibox.
- CVE-2022-2604: Use after free in Safe Browsing.
- CVE-2022-2605: Out of bounds read in Dawn.
- CVE-2022-2606: Use after free in Managed devices API.
- CVE-2022-2607: Use after free in Tab Strip.
- CVE-2022-2608: Use after free in Overview Mode.
- CVE-2022-2609: Use after free in Nearby Share.
There were no known exploits in the wild reported at the time of the advisory, but you should check to make sure your browser is running latest Chrome update.
- Google releases Chrome 103 (103.0.5060.134) security updates with fixes for 5 High severity vulnerabilities
- Google releases Chrome 103 (103.0.5060.53) security updates with fixes for 1 Critical, 2 High severity vulnerabilities
- Google releases Chrome 102 (102.0.5005.115) security updates with fixes for 4 High severity vulnerabilities