Google patches another Chrome vulnerability exploited by hackers
Take action: Time to patch your Chrome (and chromium based) browsers. It takes only a minute and a restart of the browser. Don't be lazy. Hackers love when you are lazy.
Learn More
Google has addressed yet another security vulnerability in its Chrome web browser, marking the fourth unpatched flaw to be exploited by attackers this year. The company has released emergency security updates.
The latest vulnerability, tracked as CVE-2023-4863, came to light when Google issued a security advisory on Monday, confirming that it had been exploited in the wild.
The nature of this zero-day vulnerability (CVE-2023-4863) is categorized as a WebP heap buffer overflow weakness. Its potential impact ranges from causing browser crashes to enabling malicious actors to execute arbitrary code.
Despite Google's acknowledgment of the exploitation of CVE-2023-4863, the company has not yet released detailed information about the specific attacks that have occurred. Google explained that access to bug details and related links may be restricted until a significant portion of users have applied the fix
Updated version of Chrome is currently being distributed to users through both the Stable and Extended Stable channels. It is anticipated that this update will gradually roll out to the entire user base over the coming days or weeks.
Chrome users are strongly advised to upgrade their web browsers to version 116.0.5845.187 for Mac and Linux users, and version 116.0.5845.187/.188 for Windows users. These updated versions contain critical patches to address the CVE-2023-4863 vulnerability on all major operating systems.
