Microsoft Edge for Chromium business updated to 95.0.1020.40, fixes several high-severity security vulnerabilities

Microsoft Edge for Chromium business updated to 95.0.1020.40, fixes several high-severity security vulnerabilities

Hello everyone,

 

Microsoft Edge for Chromium business has been updated to 95.0.1020.40 for Windows, macOS, and Linux. This update comes with fixes for 8 security vulnerabilities. The details of the vulnerabilities fixed are as follows:

 CVE ID
 Vulnerability
 Severity
 CVE-2021-37997
 Use after free in Sign-In
 High
 CVE-2021-37998
 Use after free in Garbage Collection
 High
 CVE-2021-37999
 Insufficient data validation in New Tab Page
 High
 CVE-2021-38000
 Insufficient validation of untrusted input in Intents
 High
 CVE-2021-38001
 Type Confusion in V8
 High
 CVE-2021-38002
 Use after free in Web Transport
 High
 CVE-2021-38003
 Inappropriate implementation in V8 
 High

To install this update on your Windows machines, initiate a sync between the Central Patch Repository and the Desktop Central server. Once the sync is complete, search for the following Patch IDs or Bulletin ID and deploy them to your target systems.

 Patch ID
 Bulletin ID
 Patch Description
 322207
 TU-1035
 Microsoft Edge for chromium business (95.0.1020.40)
 322208
 TU-1035
 Microsoft Edge for chromium business (x64) (95.0.1020.40)

Cheers,

The ManageEngine Team