Google releases an urgent update to Chrome to patch an actively exploited zero-day vulnerability


A type confusion flaw in the V8 JavaScript engine has been assigned the CVE-2022-1096 designation. Reports of the bug were first made on March 23, 2022, by an unidentified researcher.

Type confusion errors, which occur when a resource (e.g., a variable or an object) is accessed using a type that is incompatible with what was originally initialised, could have serious consequences in languages that are not memory-safe like C and C++, allowing a malicious actor to perform out-of-bounds memory access.

Using the wrong type of memory buffer access can result in reading or writing memory outside of the buffer’s bounds if the allocated buffer is smaller than the type to which the code is trying to gain access, according to MITRE’s Common Weakness Enumeration (CWE).

Also read: Game Pass might launch next week on PlayStation

It acknowledged that an exploit for CVE-2022-1096 “exists in the wild,” but did not provide any additional details in order to prevent any further exploitation and until the majority of users have been updated with a fix.

Chrome’s CVE-2022-1096, a use-after-free flaw in the animation component, was patched on February 14th of this year, making it the second zero-day vulnerability Google has addressed in Chrome this year.

TAG recently revealed the details of a North Korean nation-state campaign that used the flaw to attack U.S. businesses in the media, IT, cryptocurrency, and fintech industries, all of which are located in the United States.

Google Chrome users are strongly advised to upgrade to the latest version of 99.0.4844.84 for Windows, Mac, and Linux to protect themselves from any possible threats. As soon as the fixes become available, users of Chromium-based browsers like Opera, Microsoft Edge, and Vivaldi should also apply them.

Also read: Apple is rumored to introduce a subscription service for the iPhone

Previous articleGame Pass might launch next week on PlayStation
Next articleShares of Holders Technology surge on a swing up in FY 2021 pretax profit
Zaid Quraishi
My name is Zaid Quraishi. I pride myself on being a meticulous and organized individual who has done his Bachelors in Medical Technology and currently pursuing my Master's in the same course from Sher-e-Kashmir Institute of Medical Sciences. I belong to the beautiful valley of Kashmir, and my hometown is Srinagar. I am the elder sibling of my younger brother. As far as my strengths are concerned, I am effectively communicative, optimistic, reliable, a team player, and time-efficient. My weaknesses are that I am an honest person and I tend to be blunt, and sometimes, I like to work alone. I am passionate about content writing, online gaming, and learning new things, especially languages (currently German). I have written two papers for my University degree, which helped me immensely in learning how to write effectively. I am confident in my writing skills, and I can effectively pour my thoughts out in writing and express myself so that the reader relates to it and is intrigued by the content. I love to play with my pet cat, and she is a darling to me. The thing that I dislike the most is being distracted when you are in the zone. Currently, I am a content writer in a dynamic work environment at Shouzy, ready to improve readers' satisfaction and increase retention levels.


Please enter your comment!
Please enter your name here