Google fixes several high severity vulnerabilities in its Chrome 108.0.5359.71/72 Stable Channel update
Hey everyone,
Chrome Stable Channel has been updated to 108.0.5359.71/72 for Windows and 108.0.5359.71 for Mac and Linux. This update comes with 28 security fixes. The details of the vulnerabilities fixed are mentioned below:
CVE ID | Vulnerability | Severity |
CVE-2022-4174 | Type Confusion in V8 | High |
CVE-2022-4175 | Use after free in Camera Capture | High |
CVE-2022-4176 | Out of bounds write in Lacros Graphics | High |
CVE-2022-4177 | Use after free in Extensions | High |
CVE-2022-4178 | Use after free in Mojo | High |
CVE-2022-4179 | Use after free in Audio | High |
CVE-2022-4180 | Use after free in Mojo | High |
CVE-2022-4181 | Use after free in Forms | High |
CVE-2022-4182 | Inappropriate implementation in Fenced Frames | Medium |
CVE-2022-4183 | Insufficient policy enforcement in Popup Blocker | Medium |
CVE-2022-4184 | Insufficient policy enforcement in Autofill | Medium |
CVE-2022-4185 | Inappropriate implementation in Navigation | Medium |
CVE-2022-4186 | Insufficient validation of untrusted input in Downloads | Medium |
CVE-2022-4187 | Insufficient policy enforcement in DevTools | Medium |
CVE-2022-4188 | Insufficient validation of untrusted input in CORS | Medium |
CVE-2022-4189 | Insufficient policy enforcement in DevTools | Medium |
CVE-2022-4190 | Insufficient data validation in Directory | Medium |
CVE-2022-4191 | Use after free in Sign-In | Medium |
CVE-2022-4192 | Use after free in Live Caption | Medium |
CVE-2022-4193 | Insufficient policy enforcement in File System API | Medium |
CVE-2022-4194 | Use after free in Accessibility | Medium |
CVE-2022-4195 | Insufficient policy enforcement in Safe Browsing | Medium |
To install this update on your Windows / Mac machines, initiate a sync between the Central Patch Repository and the Endpoint Central / Patch Manager Plus / Vulnerability Manager Plus server. Once the sync is complete, search for the following Patch IDs or Bulletin ID and deploy them to your target systems.
Patch ID | Bulletin ID | Patch Description |
327835 | TU-017 | Google Chrome (x64) (108.0.5359.72) |
327834 | TU-017 | Google Chrome (108.0.5359.72) |
604515 | MAC-012 | Google Chrome For Mac (108.0.5359.71) |
Cheers,
The ManageEngine Team