“Multiple vulnerabilities have been reported in Google Chrome that could allow remote attacker to execute arbitrary code, bypass security restrictions, access sensitive information, contact spoofing attack and denial of service (DoS) attack on the targeted system,” the Computer Emergency Response Team-India (CERT-In) warned in its latest advisory.
Explaining the vulnerability, it said, “These vulnerabilities exist in Google Chrome due to heap buffer overflow, side-channel information leakage, type confusion, inappropriate implementation in WebRTC, use after free, policy bypass, out of bounds write, insufficient policy enforcement, incorrect security UI, out of bounds memory access and insufficient data validation.”
“A remote attacker could exploit these vulnerabilities by creating a specially crafted webpage on the targeted system,” said the CERT-In advisory.
Google has advised its user to update Chrome to 84.0.4147.89 version that contains 38 fixes, to avoid any kind of mishappen.
Google has made all appropriate changes in the new update to fix the bugs.