Dismiss this notice
Ant Download Manager Christmas 2020 Giveaway - https://www.geeks.fyi/showthread.php?tid=13686

Dismiss this notice
Macrium Reflect Home Edition Christmas 2020 Giveaway - https://www.geeks.fyi/showthread.php?tid=13685

Dismiss this notice
HitmanPro.Alert Christmas 2020 Giveaway - https://www.geeks.fyi/showthread.php?tid=13684

Dismiss this notice
VoodooShield PRO Christmas 2020 Giveaway - https://www.geeks.fyi/showthread.php?tid=13689

Dismiss this notice
NoVirusThanks OSArmor v1.5 Christmas 2020 Giveaway - https://www.geeks.fyi/showthread.php?tid=13758

Dismiss this notice
Revo Uninstaller Pro 4 Christmas 2020 Giveaway - https://www.geeks.fyi/showthread.php?tid=13688

Dismiss this notice
CheckMAL's AppCheck Pro Christmas 2020 Giveaway - https://www.geeks.fyi/showthread.php?tid=13690

Thread Rating:
  • 1 Vote(s) - 5 Average
  • 1
  • 2
  • 3
  • 4
  • 5
New Google Chrome version fixes actively exploited zero-day bug
#1
Quote:Google has released Chrome 86.0.4240.111 today, October 20th, 2020, to the Stable desktop channel to address five security vulnerabilities, one of them an actively exploited zero-day bug.

"Google is aware of reports that an exploit for CVE-2020-15999 exists in the wild," the Google Chrome 86.0.4240.111 announcement reads.

This version is rolling out to the entire userbase during the next days/weeks. Windows, Mac, and Linux desktop users can upgrade to Chrome 86 by going to Settings -> Help -> About Google Chrome.

The Google Chrome web browser will then automatically check for the new update and install it when available.

Freetype zero-day bug under active exploitation
"Project Zero discovered and reported an actively exploited 0day in freetype that was being used to target Chrome," said Ben Hawkes, technical team lead of Google's 'Project Zero' security research team.

"While we only saw an exploit for Chrome, other users of freetype should adopt the fix discussed here: https://savannah.nongnu.org/bugs/?59308 -- the fix is also in today's stable release of FreeType 2.10.4," Hawkes added.

The heap buffer overflow zero-day bug found in the popular FreeType text rendering library has been reported by Google Project Zero's Sergei Glazunov on October 19.

According to Glazunov's report, the vulnerability "exists in the function `Load_SBit_Png`, which processes PNG images embedded into fonts
."
source : https://www.bleepingcomputer.com/news/se...o-day-bug/
[-] The following 2 users Like Imran's post:
  • harlan4096, silversurfer
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username:


Password:





[-]
Recent Posts
NoVirusThanks OSArmor v1.5
Thanks for the updat...jasonX — 17:26
GFYI [Official] NoVirusThanks OSArmor v...
Thanks a lot for the...dinosaur07 — 16:28
NoVirusThanks OSArmor v1.5.3
We've released OSA...harlan4096 — 16:26
GFYI [Official] NoVirusThanks OSArmor v...
Sponsor has given wo...jasonX — 16:04
GFYI [Official] NoVirusThanks OSArmor v...
Sponsor has given wo...jasonX — 16:04

[-]
Birthdays
Today's Birthdays
No birthdays today.
Upcoming Birthdays
avatar (45)theoldevext
avatar (40)algratCep
avatar (45)Qlaude2Sap
avatar (46)Josepharelf
avatar (35)kholukrefar
avatar (44)Lauraimike
avatar (46)WilsonWag
avatar (44)StevenPiole
avatar (35)zetssToomy
avatar (42)GornOr
avatar (45)Jamesmog
avatar (33)opeqyrav
avatar (36)dlanod78
avatar (33)ivanoFloom
avatar (36)uxegihor

[-]
Online Staff
dhruv2193's profile dhruv2193

>