It seems like Google has patched the first Zero-day vulnerability of 2022 with the release of Google Chrome version 98.0.4758.102 for Linux, Mac, and Windows operating systems.
In its security advisory, Google said that Google is aware of reports that an exploit for CVE-2022-0609 exists in the wild.
Meanwhile, Chrome users can install the update instantly by navigating to Chrome menu > Help > About Google Chrome.
On the next launch, Chrome will look for updates and automatically install them.
The Zero-day vulnerability tracked as CVE-2022-0609 has been assigned as high severity and described as a use-after-free vulnerability in the animation component.
Google’s Security Engineer, Clément Lecigne, discovered this first Zero-day vulnerability of 2022 tracked as CVE-2022-0609.
Threat actors actively exploit use after free bugs to execute arbitrary code on computers running on the unpatched versions of Chrome or bypass the browser’s security sandbox.
Though Google said they are aware of attacks exploiting this vulnerability, they didn’t offer any information about the attacks or technical details regarding the exposure.
Google further stated that they would restrict access to the vulnerability until most users are offered the fix.
Besides the Zero-day, Google chrome has also updated seven other security vulnerabilities.
Google patched 16 Zero-days in 2021
Back in 2021, Google patched 16 zero-days:
- CVE-2021-21148: February 4th, 2021
- CVE-2021-21166: March 2nd, 2021
- CVE-2021-21193: March 12th, 2021
- CVE-2021-21220: April 13th, 2021
- CVE-2021-21224: April 20th, 2021
- CVE-2021-30551: June 9th, 2021
- CVE-2021-30554: June 17th, 2021
- CVE-2021-30563: July 15th, 2021
- CVE-2021-30632 and CVE-2021-30633: September 13th
- CVE-2021-37973: September 24th, 2021
- CVE-2021-37976 and CVE-2021-37975: September 30th, 2021
- CVE-2021-38000 and CVE-2021-38003: October 28th, 2021
- CVE-2021-4102: December 13th, 2021
We suggest our readers regularly update their browsers and operating systems as a part of best security practices.
Are you looking for more software news? Then, stay tuned for the latest software news from top tech industries.