Chrome: an actively exploited security flaw -
A new version of Google's Internet browser is available to users.
In addition to the addition of several features - including the ability to quickly switch between different profiles - this version mainly brings several fixes.
It corrects 47 bugs and other security flaws, including an actively exploited zero-day vulnerability.
If the American giant details what the various bugs and vulnerabilities consist of, this is not the case with the zero-day flaw.
Google is content to identify it (CVE-2021-21166) and only indicates that it consists of a "problem of life cycle of objects in the audio".
The flaw is rated as high priority.
Google prefers not to say too much
The lack of information regarding this security breach is explained by the fact that it is actively exploited.
The Mountain View firm prefers to avoid making work easier for other hackers.
"Note: Access to bug details and links may be restricted until the majority of users have updated [their Internet browser]," Google says in its blog.
“We will also keep the restrictions if the bug exists in a third-party library that other projects depend on the same way, but which have not yet been fixed.
Although we don't know much about it, we do know who discovered this security flaw in Google Chrome.
This is cybersecurity researcher Alison Huffman, a member of Microsoft's Security Vulnerability Research Program.
She reported the flaw to Google on February 11.
Our high-tech dossier
To update your web browser or to check the version of Chrome, click on the three small dots at the top right and select Help> About Google Chrome.
This will take you to a new page where you can see if your browser is up to date (89.0.4389.72).
Google seeks to wean itself from user tracking cookies
Gootkit: Google, unwitting ally of malware that exploits search results