Google releases fixes for several high severity vulnerabilities in its Chrome 100.0.4896.60 Stable Channel update

Hello everyone,

Chrome Stable Channel has been updated to 100.0.4896.60 for Windows, Mac, and Linux. This update comes with 28 security fixes. The details of the vulnerabilities fixed are as follows:

CVE ID	Description	Severity
CVE-2022-1125	Use after free in Portals	High
CVE-2022-1127	Use after free in QR Code Generator	High
CVE-2022-1128	Inappropriate implementation in Web Share API	High
CVE-2022-1129	Inappropriate implementation in Full Screen Mode	High
CVE-2022-1130	Insufficient validation of untrusted input in WebOTP	High
CVE-2022-1131	Use after free in Cast UI	High
CVE-2022-1132	Inappropriate implementation in Virtual Keyboard	High
CVE-2022-1133	Use after free in WebRTC	High
CVE-2022-1134	Type Confusion in V8	High
CVE-2022-1135	Use after free in Shopping Cart	Medium
CVE-2022-1136	Use after free in Tab Strip	Medium
CVE-2022-1137	Inappropriate implementation in Extensions	Medium
CVE-2022-1138	Inappropriate implementation in Web Cursor	Medium
CVE-2022-1139	Inappropriate implementation in Background Fetch API	Medium
CVE-2022-1141	Use after free in File Manager	Medium
CVE-2022-1142	Heap buffer overflow in WebUI	Medium
CVE-2022-1143	Heap buffer overflow in WebUI	Medium
CVE-2022-1144	Use after free in WebUI	Medium
CVE-2022-1145	Use after free in Extensions	Medium
CVE-2022-1146	Inappropriate implementation in Resource Timing	Low

To install this update on your Windows/Mac machines, initiate a sync between the Central Patch Repository and the Desktop Central / Patch Manager Plus / Vulnerability Manager Plus server. Once the sync is complete, search for the following Patch IDs or Bulletin ID and deploy them to your target systems.

Patch ID	Bulletin ID	Patch Description
324244	TU-017	Google Chrome (x64) (100.0.4896.60)
324243	TU-017	Google Chrome (100.0.4896.60)
603726	MAC-012	Google Chrome For Mac (100.0.4896.60)