Chrome 126 Updates Patch High-Severity Vulnerabilities

Chrome 126 Updates Patch High-Severity Vulnerabilities

July 17, 2024 at 06:03AM

Google announced security updates for Chrome 126, addressing ten vulnerabilities, including high-severity bugs reported by external researchers. The release resolves various flaws in V8, Screen Capture, Media Stream, Audio, and Navigation. Google paid over $32,000 in bug bounty rewards and advises users to update their browsers to the latest versions.

Based on the meeting notes, the key takeaways are:

1. Google announced security updates for Chrome 126 addressing ten vulnerabilities, including eight high-severity bugs reported by external researchers.
2. The vulnerabilities mainly involve memory issues, potentially leading to sandbox escape and remote code execution.
3. The release resolves flaws in V8 implementation, type confusion in V8, use-after-free bugs in various areas, a race condition in DevTools, and an out-of-bounds memory access in V8.
4. Google paid out over $32,000 in bug bounty rewards for the reported vulnerabilities, with some pending reward amounts yet to be determined.
5. The latest Chrome release is rolling out for different operating systems, and Chrome for Android was also updated with the same patches.
6. Users are advised to update their browsers promptly, though there is no mention of the vulnerabilities being exploited in the wild.

If you need any further details or summary in a specific format, feel free to ask!

Full Article