Google fixes a zero-day and other high severity vulnerabilities in its Chrome 112.0.5615.137/138 Stable Channel update
Hey everyone,
Chrome Stable Channel has been updated to 112.0.5615.137/138 for Windows and 112.0.5615.137 for Mac. This update comes with 8 security fixes. The details of the vulnerabilities fixed are mentioned below:
CVE ID | Vulnerability | Severity |
CVE-2023-2133 | Out of bounds memory access in Service Worker API | High |
CVE-2023-2134 | Out of bounds memory access in Service Worker API | High |
CVE-2023-2135 | Use after free in DevTools | High |
CVE-2023-2136 | Integer overflow in Skia | High |
CVE-2023-2137 | Heap buffer overflow in sqlite | Medium |
Google has stated that it is aware that an exploit for CVE-2023-2136 exists in the wild.
To install this update on your Windows / Mac machines, initiate a sync between the Central Patch Repository and the Endpoint Central / Patch Manager Plus / Vulnerability Manager Plus server. Once the sync is complete, search for the following Patch IDs or Bulletin ID and deploy them to your target systems.
... patch details have been mentioned in the comments.
Topic Participants
Anupam KP
Eduardo Mendoza
New to M365 Manager Plus?
New to M365 Manager Plus?
New to RecoveryManager Plus?
New to RecoveryManager Plus?
New to Exchange Reporter Plus?
New to Exchange Reporter Plus?
New to SharePoint Manager Plus?
New to SharePoint Manager Plus?
New to ADManager Plus?