Google Chrome fixes one zero-day CVE-2021-30554 along with other vulnerabilities in its stable channel 91.0.4472.114 update

Google Chrome fixes one zero-day CVE-2021-30554 along with other vulnerabilities in its stable channel 91.0.4472.114 update

Hello everyone,

 

Chrome stable channel has been updated to 91.0.4472.114 for Windows, macOS, and Linux. This update comes with fixes for 4 security vulnerabilities with one of them being an actively exploited zero-day vulnerability tracked as CVE-2021-30554. Successful exploitation of this vulnerability could lead to arbitrary code execution on computers running unpatched Chrome versions. The details of the vulnerabilities fixed are as follows:

 CVE ID Vulnerability Severity
 CVE-2021-30554 Use after free in WebGL High
 CVE-2021-30555 Use after free in Sharing High
 CVE-2021-30556 Use after free in WebAudio High
 CVE-2021-30557 Use after free in TabGroups High

To install this update using Patch Manager Plus, initiate a sync between the Central Patch Repository and the Patch Manager Plus server. Once the sync is complete, search for the following Patch IDs or Bulletin ID and deploy them to your target systems.

 Patch ID Bulletin ID Patch Description
 320143 TU-017 Google Chrome (91.0.4472.114)
 320144 TU-017 Google Chrome (x64) (91.0.4472.114)

Cheers,

The ManageEngine Team