Google Chrome has received an update containing a corrective patch for a critical security flaw, already actively exploited by hackers. It is recommended to install it as soon as possible.
The update to Chrome 105 is only a few days old, but Google has already rolled out a new update for its web browser. Chrome version 105.0.5195.102 is available now for users on Windows, Mac, and Linux. This includes a security patch that closes a vulnerability actively exploited by hackers.
The security flaw, which has been assigned a high severity according to the scale in force, is documented under the name CVE-2022-3075. Google is not very generous in detailing the nature of this vulnerability, stating only that it is related to a insufficient data validation in Mojo, a collection of runtime libraries used by Chromium, the rendering engine that serves as the foundation for Chrome.
Chrome: a patch for an actively exploited zero-day security flaw
The Mountain View firm explains that it prefers to keep the exact operation of the exploitation of the security vulnerability secret for the moment, “until a majority of users are updated with a patch”. Revealing this information too soon would allow other hackers to exploit the vulnerability before the public is protected from it.
To install the update, go to the options menu by clicking on the button with three dots arranged vertically, at the top right of the window. Then select “Assistance”then “About Google Chrome” to launch the update search, which then installs itself. If you do nothing, the update will be automatically installed on your machine within a few days or weeks.
Chrome 105 already brought 24 security patches, so here is the 25th. It is also the sixth zero-day vulnerability patched by Google for Chrome this year.