Recent Chrome and Firefox updates at the moment are rolling out with fixes for over 70 vulnerabilities, together with vital and high-severity reminiscence security bugs that might doubtlessly result in distant code execution (RCE).
Chrome has been up to date to variations 149.0.7827.155/.156 for Home windows and macOS and model 149.0.7827.155 for Linux to resolve 33 safety defects, 32 of which have been discovered by Google.
Of the seven critical-severity flaws talked about in Google’s advisory, six are use-after-free points, a kind of reminiscence security bug that might be exploited for RCE.
In Chrome, these weaknesses might result in sandbox escape if mixed with the exploitation of vulnerabilities within the working system or in a privileged browser course of.
The recent Chrome launch additionally patches 26 high-severity bugs, together with eight use-after-free flaws, together with inadequate information validation, inappropriate implementation, out-of-bounds learn, incorrect safety UI, heap buffer overflow, and uninitialized use points.
Google makes no point out of any of those vulnerabilities being exploited within the wild.
Firefox 152 was launched to the steady channel with fixes for 40 vulnerabilities, together with 13 high-severity use-after-free, privilege escalation, incorrect boundary situation, sandbox escape, JIT miscompilation, and reminiscence security bugs.
A number of the resolved reminiscence security flaws might doubtlessly be exploited for arbitrary code execution, Mozilla warns.
On Wednesday, Mozilla additionally launched safety updates to deal with these vulnerabilities in Firefox ESR, Thunderbird, and Firefox for iOS. Extra info might be discovered on Mozilla’s advisories web page.
Associated: Chrome 149 Replace Patches 28 Vulnerabilities
Associated: VS Code Vulnerability Permits One-Click on GitHub Token Theft
Associated: Google Provides Rust DNS Parser to Pixel Telephones for Higher Safety
Associated: AI and Cybersecurity – Every little thing You Needed to Know, However Had been Afraid to Ask
