Microsoft Edge for Chromium Business 93.0.961.52 comes with fixes for a zero-day (CVE-2021-30633) and several other high severity vulnerabilities

Microsoft Edge for Chromium Business 93.0.961.52 comes with fixes for a zero-day (CVE-2021-30633) and several other high severity vulnerabilities

Hello everyone,

 

Microsoft Edge for Chromium Business has been updated to 93.0.961.52 for Windows, macOS, and Linux. This update comes with fixes for several security vulnerabilities out of which CVE-2021-30633 is exploited in the wild. The details of the vulnerabilities fixed are as follows:

 CVE ID
 Vulnerability
 Severity
 CVE-2021-30625
 Use after free in Selection API
 High
 CVE-2021-30626
 Out of bounds memory access in ANGLE
 High
 CVE-2021-30627
 Type Confusion in Blink layout
 High
 CVE-2021-30628
 Stack buffer overflow in ANGLE
 High
 CVE-2021-30629
 Use after free in Permissions
 High
 CVE-2021-30630
 Inappropriate implementation in Blink
 High
 CVE-2021-30631
 Type Confusion in Blink layout
 High
 CVE-2021-30633
 Use after free in Indexed DB API
 High

To install this update on your Windows machines, initiate a sync between the Central Patch Repository and the Desktop Central server. Once the sync is complete, search for the following Patch IDs or Bulletin ID and deploy them to your target systems.


 Patch ID
 Bulletin ID
 Patch Description
 321456
 TU-1035
 Microsoft Edge for chromium business (93.0.961.52)
 321457
 TU-1035
 Microsoft Edge for chromium business (x64) (93.0.961.52)

Cheers,

The ManageEngine Team