Chrome Targeted by Active In-the-Wild Exploit Tied to Undisclosed High-Severity Flaw
The Hacker News••technology
Key Points:
- Google released security updates for Chrome to fix three vulnerabilities, including one actively exploited in the wild, tracked as Chromium issue 466192044, with details kept confidential to prevent further exploitation.
- The actively exploited flaw is a high-severity buffer overflow vulnerability in the ANGLE library's Metal renderer, potentially allowing memory corruption or arbitrary code execution.
- Since the start of the year, Google has addressed eight zero-day vulnerabilities in Chrome, alongside two medium-severity flaws affecting the Password Manager and Toolbar components.
- Users are urged to update Chrome to versions 143.0.7499.109/.110 on Windows and macOS, and 143.0.7499.109 on Linux, via the browser’s About page to
