Microsoft fixes several high severity vulnerabilities in Edge for chromium business 92.0.902.67 update

Microsoft fixes several high severity vulnerabilities in Edge for chromium business 92.0.902.67 update

Hello everyone,

 

Microsoft fixes several high severity security vulnerabilities in Edge for chromium business' latest update 92.0.902.67. The details of the vulnerabilities fixed are as follows:

 CVE ID
 Vulnerability
 Severity
 CVE-2021-30590
 Heap buffer overflow in Bookmarks
 High
 CVE-2021-30591
 Use after free in File System API
 High
 CVE-2021-30592
 Out of bounds write in Tab Groups
 High
 CVE-2021-30593
 Out of bounds read in Tab Strip 
 High
 CVE-2021-30594
 Use after free in Page Info UI
 High
 CVE-2021-30596
 Incorrect security UI in Navigation
 Medium
 CVE-2021-30597
 Use after free in Browser UI
 Medium

To install this update on your Windows machines, initiate a sync between the Central Patch Repository and the Desktop Central server. Once the sync is complete, search for the following Patch IDs or Bulletin ID and deploy them to your target systems.

 Patch ID
 Bulletin ID
 Patch Description
 320864
 TU-1035
 Microsoft Edge for chromium business (92.0.902.67)
 320865
 TU-1035
 Microsoft Edge for chromium business (x64) (92.0.902.67)

Cheers,

The ManageEngine Team