Google Chrome fixes one Zero-day CVE-2021-30551 along with other vulnerabilities in its stable channel 91.0.4472.101 update

Google Chrome fixes one Zero-day CVE-2021-30551 along with other vulnerabilities in its stable channel 91.0.4472.101 update

Hello everyone,

 

Chrome stable channel has been updated to 91.0.4472.101 for Windows, macOS, and Linux. This update comes with fixes for 14 security vulnerabilities along with one actively exploited Zero-day vulnerability tracked as CVE-2021-30551. This zero-day was utilized by the same threat actors using the Windows CVE-2021-33742 zero-day fixed yesterday by Microsoft. 
The details of the vulnerabilities fixed are as follows:

 CVE ID
 Vulnerability
 Severity
 CVE-2021-30544
 Use after free in BFCache
 Critical
 CVE-2021-30545 
 Use after free in Extensions
 High
 CVE-2021-30546
 Use after free in Autofill
 High
 CVE-2021-30547
 Out of bounds write in ANGLE
 High
 CVE-2021-30548
 Use after free in Loader
 High
 CVE-2021-30549
 Use after free in Spell check
 High
 CVE-2021-30550
 Use after free in Accessibility
 High
 CVE-2021-30551
 Type Confusion in V8
 High
 CVE-2021-30552
 Use after free in Extensions
 Medium
 CVE-2021-30553
 Use after free in Network service
 Medium

To install these updates using Patch Manager Plus, initiate a sync between the Central Patch Repository and the Patch Manager Plus server. Once the sync is complete, search for the following Patch IDs or Bulletin ID and deploy them to your target systems.

 Patch ID
 Bulletin ID
 Patch Description
 320003
 TU-017
 Google Chrome (91.0.4472.101)
 320004
 TU-017
 Google Chrome (x64) (91.0.4472.101)


Cheers,

The ManageEngine Team