Chrome 98.0.4758.102 for Windows, Mac, and Linux has been published to address a serious zero-day vulnerability exploited by threat actors in harmful attacks.
While the emergency patches will be available in the coming weeks, you may get the update right now by going to the Chrome menu > Help > About Google Chrome. Additionally, when you relaunch Google Chrome, the browser will automatically check for new updates and install them.
The CVE-2022-0609 zero-day bug was resolved today and is classified as a “Use after free in Animation” with a high severity level. While the business did identify attacks that exploited this zero-day hole, it did not share any additional information or technical details about the flaw, at least not until most customers had a chance to install a fresh version. The business has begun rolling out Chrome 94.0.4606.71 in the Stable Desktop version to users globally, and it should be available to all users within the next few days.
Apart from the zero-day, this Google Chrome version also fixed seven other security holes, all of which were classed as ‘High’ severity. Google has fixed the first Chrome zero-day since the beginning of 2022 with this update. Given that 16 zero-day vulnerabilities were patched in 2021, many more are likely to be discovered as the year progresses.
Because attackers have been known to use this zero-day in the wild, it is critical that everyone update their Google Chrome as soon as possible.