Google released an update to Chrome on Friday that includes a fix for a high-severity zero-day bug. This problem which made its way into the browser should now be fixed with the latest software update. The update is now available for macOS, as well as all other supported platforms including Windows and Linux
The Chrome team has said there is a new update for the stable channel. It fixes high-severity bugs on all operating systems and is important to install if you are on Chrome version 99.0.4844.84
Google Chrome pushed fix for CVE-2022-1096 issue for MacOS
Google has so far refused to share the details of the exploit, despite claims it was being actively used. The team also insists that they will not release the details of the exploit if bugs in other third party libraries are found to exist, even if these libraries have yet to be fixed.
Type confusion happens when an attacker forces a browser to read and write memory outside of storage bounds. It causes crashes, but can also be exploited by an attacker to run malicious code.
Google has yet to announce when it will reveal details of the vulnerability. However, since a large number of users are still using older browsers, they may not do so until they ascertain what proportion have updated their browser.
Make sure you update your Google Chrome browser on macOS. Automatic updates are available in the newest versions but it can manually be done by selecting ‘Chrome’ from the main menu, followed by ‘About Google Chrome.’ Once the download is done, click on “Relaunch.”