Google Chrome 106.0.5249.119 Stable Version Released: Fix 6 Security Vulnerabilities
According to the news released by the official blog of Google Chrome, the stable version of Google Chrome 106.0.5249.119 has been released to fix the vulnerability. This update is a regular security update that only fixes bugs and has no new features, and Google has not mentioned that related vulnerabilities may have been exploited by hackers.
At present, the details of various vulnerabilities have not been announced. According to Google’s practice, it will only be disclosed after most users have upgraded to a new version. Based on security considerations, it is recommended that users upgrade to the latest version in time.
- [$15000] High CVE-2022-3445: Use after free in Skia. Reported by Nan Wang (@eternalsakura13) and Yong Liu of 360 Vulnerability Research Institute on 2022-09-16
- [$13000] High CVE-2022-3446: Heap buffer overflow in WebSQL. Reported by Kaijie Xu (@kaijieguigui) on 2022-09-26
- [$7500] High CVE-2022-3447: Inappropriate implementation in Custom Tabs. Reported by Narendra Bhati of Suma Soft Pvt. Ltd. Pune (India) on 2022-09-22
- [$2500] High CVE-2022-3448: Use after free in Permissions API. Reported by raven at KunLun lab on 2022-09-13
- [$TBD] High CVE-2022-3449: Use after free in Safe Browsing. Reported by asnine on 2022-09-17
- [$TBD] High CVE-2022-3450: Use after free in Peer Connection. Reported by Anonymous on 2022-09-30