Microsoft fixes several high severity vulnerabilities in Edge for chromium business 92.0.902.67 update

Microsoft fixes several high severity vulnerabilities in Edge for chromium business 92.0.902.67 update

Hello everyone,

 

Microsoft fixes several high severity security vulnerabilities in Edge for chromium business' latest update 92.0.902.67. The details of the vulnerabilities fixed are as follows:

 CVE ID Vulnerability Severity
 CVE-2021-30590 Heap buffer overflow in Bookmarks High
 CVE-2021-30591 Use after free in File System API High
 CVE-2021-30592 Out of bounds write in Tab Groups High
 CVE-2021-30593 Out of bounds read in Tab Strip  High
 CVE-2021-30594 Use after free in Page Info UI High
 CVE-2021-30596 Incorrect security UI in Navigation Medium
 CVE-2021-30597 Use after free in Browser UI Medium

To install this update on your Windows machines, initiate a sync between the Central Patch Repository and the Patch Manager Plus server. Once the sync is complete, search for the following Patch IDs or Bulletin ID and deploy them to your target systems.

 Patch ID Bulletin ID Patch Description
 320864 TU-1035 Microsoft Edge for chromium business (92.0.902.67)
 320865 TU-1035 Microsoft Edge for chromium business (x64) (92.0.902.67)

Cheers,

The ManageEngine Team