Google recently issued an update for Chrome, addressing a zero-day vulnerability identified as CVE-2024-4671, which attackers exploited.
The critical security flaw involves a ‘use after free’ issue in the Visuals component that renders web content. The flaw could allow attackers to execute malicious code when users visit compromised websites.
This vulnerability holds a ‘High’ severity rating, prompting urgent updates across all desktop versions of Chrome to safeguard users. Google disclosed in a blog post that an exploit for this vulnerability was already active in the wild, making the update crucial for user protection.
The patched versions, Google Chrome 124.0.6367.201/.202 for Windows and macOS and version 124.0.6367.201 for Linux, are now available. Users can update their browsers by navigating to the Help section under the settings menu.
Windows users can access this via the three-dot menu at the upper right corner, clicking Help > About Google Chrome, and then Updating Google Chrome. If the update button is not visible, the browser will already use the latest version. MacOS users can enable automatic updates for all users, while Linux users should update through their package manager.