Google Patches High-Severity Flaws in Google Chrome

  • CERT Admin
  • Tue Apr 21 2020
  • Alerts

Threat Level 

High 

Overview

Google has released a new version of Chrome browser for Windows, Mac and Linux platforms addressing multiple high security flaws.

Description 

According to the Google security advisory, Google has released a security patch for the Chrome browser addressing several high severity bugs identified by many security professionals.

Successful exploitation of these vulnerabilities can allow an attacker to execute arbitrary codes on the machines running a vulnerable chrome browser. According to the Centre of Internet Security (CIS), depending the privileges associated with the application, an attacker could view, change, or delete data in the computer.

Some of the high severity flaws that are addressed in the patch are vulnerabilities in the WebAudio component of Chrome (CVE-2020-6450 and CVE-2020-6451), heap-based buffer overflow (CVE-2020-6452) and Critical CVE-2020-6457.

Impact 

  ✻  Unauthorized access to your computer
  ✻  Distribution of malware
  ✻  Disruption to your day to day activities
  ✻  Expose of your personal information such as usernames and passwords 

Solution/ Workarounds 

  ✻  Apply the Google Chrome browser latest security patch 81.0.4044.113V for Windows, Mac and Linux platforms 

References 

    ✻  https://chromereleases.googleblog.com/2020/04/stable-channel-update-for-desktop_15.html

    ✻  https://www.forbes.com/sites/gordonkelly/2020/04/18/google-chrome-81-critical-security-exploit-upgrade-warning-update-chrome-browser/#757d1fe76bde

Disclaimer 

The information provided herein is on "as is" basis, without warranty of any kind. 

Last updated: Tue Apr 21 2020