Google Chrome’s 126 update fixes numerous high-severity vulnerabilities

Google Chrome’s 126 update fixes numerous high-severity vulnerabilities



Google has released the Chrome 126 update to fix six vulnerabilities, including a high-severity type confusion flaw in the V8 script engine demonstrated at TyphoonPWN 2024 hacking competition. Seunghyun Lee reported this issue and received a $20,000 reward. Other high-severity issues addressed include inappropriate implementation in WebAssembly, out-of-bounds memory access, and use after free in Dawn. Google has not disclosed technical details about these vulnerabilities and stated that they are not aware of any attacks exploiting these flaws. The Chrome 126 security update is being rolled out to users as version 126.0.6478.114 for Linux and versions 126.0.6478.114/115 for Windows and macOS.

Article Source
https://securityaffairs.com/164688/security/google-chrome-126-update.html?amp