- Google has released an emergency update to fix the zero-days vulnerability.
- The update is a gradual rollout but should be fully available in the coming days.
- A manual upgrade is required for the changes to take effect.
Google Chrome is one of the most popular web browsers with over 3 billion users. It’s popularity and high number of users make it an easy and lucrative target for attackers.
Since the beginning of the year, Google Chrome has suffered zero-day vulnerabilities. Recently, Google had to release an emergency update to fix the zero-day vulnerability that has been actively exploited by attackers. The security risk affects the Chrome browser on Windows, Linux and Mac.
Details to be disclosed
There have been two zero-days vulnerabilities and while fixes have been released, it is still concerning.
The first version CVE-2021-37976 of the zero-day vulnerability was described as an information leak in core and the second one CVE-2021-37975, was a high severity user after free bug.
Google says it will keep the bug details and links restricted until users have updated their browsers with the fix.
Fix the bug
Users are being encouraged to perform a manual update for the update to take effect by restarting their browser and installing the latest version and preventing exploitation. However, if you have enabled automatic updates, the browser should perform the update and upgrade to the latest version.
This will be the 13th fix since the zero-day vulnerabilities began attacking the Chrome browser in 2021 compared to eight experienced in the previous year. According to Google, this is one of the most severe vulnerabilities detected seeing as it necessitated an official update of the Chrome browser.
Have you been a victim of any of the zero-day vulnerabilities? Let us know in the comment section below.