If you use Google Chrome a lot, you should update to version 101 as soon as possible. According to the latest patch release, developers have patched 29 security vulnerabilities, six of which are listed as “high” threats by the developers. Chrome 101.0.4951.41 for Windows, Mac, and Linux includes fixes for several serious security vulnerabilities.
Google paid a total of $29,000 for four of the first six more serious vulnerabilities. Chrome’s developers discovered two more internally, and the vulnerabilities included the following:
- CVE-2022-1477: Use after free in Vulkan.
- CVE-2022-1478: Use after free in SwiftShader.
- CVE-2022-1479: Use after free in ANGLE.
- CVE-2022-1481: Use after free in Sharing.
- CVE-2022-1482: Inappropriate implementation in WebGL.
- CVE-2022-1483: Heap buffer overflow in WebGPU.
Google has not released details of the flaws, and the company wants to wait until most users have updated their browsers before revealing exactly what the flaws are and how attackers could exploit them. Google is also withholding details about vulnerabilities that exist in third-party libraries until developers have a chance to patch them.
Google marked the remaining 23 fixes as mostly medium threats, with four designated as low threats. You can check them out in Chrome 101’s release notes. Chrome 101 is the second major release in a row that Google urgently encourages users to migrate to because of security concerns.
In March, Google advised users to update from Chrome 99 to Chrome 100 because a zero-day vulnerability related to the browser’s JavaScript engine allowed unauthorized code execution. Version 100 also had an issue that could cause websites to not be able to read the UA, and of course website developers have mostly updated their websites to accommodate the latest browser upgrades.
Users can manually initiate the update from the Chrome settings menu, or download the installer from the official website for a fresh installation. Alternatively one can wait for the browser to automatically update after a few days.