Google releases emergency security update to address Chrome zero-day vulnerability

News on September 13, Google recently released an emergency security update to fix zero-day security vulnerabilities in its Chrome browser. This vulnerability, identified as CVE-2023-4863, exists in the WebP image format and is a heap buffer overflow vulnerability. A heap buffer overflow is a security vulnerability that can cause problems when a program attempts to write more data to a memory buffer than its designed capacity, potentially providing an attacker with the opportunity to execute arbitrary code on the victim's device. This can lead to serious security threats.

This vulnerability was originally discovered by Apple Security Engineering and Architecture (SEAR) and the Citizen Lab of the Munk School of the University of Toronto on September 6, 2023, and subsequently Report to Google. Although the vulnerability has been fixed, Google has been conservative in not disclosing the details of the vulnerability or providing information on how an attacker might abuse the vulnerability to reduce the potential risk of abuse.

According to the editor’s understanding, Google has released the latest version of the Chrome browser that fixes the vulnerability. To ensure the security of your device, Chrome browser users are strongly encouraged to immediately upgrade to the version appropriate for their operating system. This security update contains fixes for known security vulnerabilities, so it is important to update in a timely manner. Users can choose to install Mac / Version 116.0.5845.187 for Linux platforms or version 116.0.5845.188 for Windows platforms to ensure browser security. Security is always the top concern for Internet users, and Google strongly recommends updates to its users out of its heightened concern for security.

The above is the detailed content of Google releases emergency security update to address Chrome zero-day vulnerability. For more information, please follow other related articles on the PHP Chinese website!