Google fixes a zero-day and other high severity vulnerabilities in its Chrome 112.0.5615.137/138 Stable Channel update

Google fixes a zero-day and other high severity vulnerabilities in its Chrome 112.0.5615.137/138 Stable Channel update

Hey everyone,

Chrome Stable Channel has been updated to 112.0.5615.137/138 for Windows and 112.0.5615.137 for Mac. This update comes with 8 security fixes. The details of the vulnerabilities fixed are mentioned below:

CVE ID
Vulnerability
Severity
CVE-2023-2133
Out of bounds memory access in Service Worker API
High
CVE-2023-2134
Out of bounds memory access in Service Worker API
High
CVE-2023-2135
Use after free in DevTools
High
CVE-2023-2136
Integer overflow in Skia
High
CVE-2023-2137
Heap buffer overflow in sqlite

Medium

Google has stated that it is aware that an exploit for CVE-2023-2136 exists in the wild.
‚Äč
To install this update on your Windows / Mac machines, initiate a sync between the Central Patch Repository and the Endpoint Central / Patch Manager Plus / Vulnerability Manager Plus server. Once the sync is complete, search for the following Patch IDs or Bulletin ID and deploy them to your target systems.

... patch details have been mentioned in the comments.


      New to ADSelfService Plus?