October 11, 2023 at 08:24AM
Google has released Chrome 118 with fixes for 20 vulnerabilities, including a critical bug in Site Isolation that could allow sites to steal data. Google has yet to determine the bug bounty reward for this vulnerability. The release also addresses eight medium-severity flaws and five low-severity vulnerabilities. The latest version of Chrome is now rolling out for macOS, Linux, and Windows. No mention of these vulnerabilities being exploited in attacks has been made by Google.
Key Takeaways from the Meeting Notes:
– Google has released Chrome 118 to the stable channel, addressing a total of 20 vulnerabilities.
– 14 of these vulnerabilities were reported by external researchers.
– The most severe externally reported flaw is CVE-2023-5218, described as a critical use-after-free issue in Site Isolation, which is responsible for preventing data theft between sites.
– Use-after-free bugs in Site Isolation can potentially allow attackers to perform a sandbox escape and execute arbitrary code.
– The bug bounty reward for CVE-2023-5218 has yet to be determined.
– Chrome 118 also resolves eight medium-severity flaws, including inappropriate implementation issues in various components.
– Two medium-severity vulnerabilities, a use-after-free vulnerability in Blink History and a heap buffer overflow bug in PDF, were also fixed.
– The remaining five externally reported issues patched in this release are low-severity vulnerabilities.
– Google has provided over $30,000 in bug bounty rewards to the reporting researchers, with the final amount potentially higher.
– There is no mention of these vulnerabilities being exploited in malicious attacks.
– The latest Chrome release is available as version 118.0.5993.70 for macOS and Linux, and versions 118.0.5993.70/.71 for Windows.
– The meeting notes include related articles on Chrome zero-day reported by Apple and password-stealing Chrome extensions demonstrating new vulnerabilities.