Google Chrome Update Fixes High-Severity Zero-Day Vulnerability That Was Actively Exploited

The latest updates for Google Chrome fix a flaw that allows an attacker to use a malicious file to run dangerous code on a user's computer.

Advertisement
Written by David Delima, Edited by Siddharth Suvarna | Updated: 1 December 2023 15:22 IST
Highlights
  • Google has updated its Chrome browser with important security patches
  • The updates are available for Windows, macOS and Linux
  • Google says it is aware of the Chrome flaw being actively exploited

Google Chrome users with automatic updates enabled should already be protected

Photo Credit: Gadgets 360

Google is rolling out a security patch for its Chrome web browser that fixes a security flaw that could allow a malicious user to run dangerous code on a user's computer. The update is available for Windows, macOS, and Linux computers and users should install the latest version in order to remain protected from the zero-day vulnerability — the sixth one to be patched by Google this year. The company is expected to provide more information once the update has been rolled out to several users.

Spotted by Android Central, the update to Google Chrome 119.0.6045.199 for macOS and Linux began rolling out to users earlier this week, alongside version 119.0.6045.200 for Windows computers with a fix for a zero-day vulnerability in tow. These are flaws that were previously unknown to the developers of the software, making them a target for malicious users.

Advertisement

With the latest Google Chrome update, the company has patched the security bug tracked by the National Institute of Standards and Technology (NIST) as CVE-2023-6345. While the company hasn't revealed a great deal of information related to the security flaw, the firm says it knows that "an exploit for CVE-2023-6345 exists in the wild" in its release notes for the latest update. Users should enable automatic updates for Chrome or manually update to the latest versions in order to get the latest fixes.

Meanwhile, the entry for the vulnerability on the NIST website has been assigned a "High" severity level. The description states that it is related to the open source Skia library that is used in Google Chrome. An attacker could use a malicious file to compromise the renderer process and escape the sandbox — a system designed to separate the browser and the system, to keep the latter protected.

Advertisement

The company credits Benoît Sevens and Clément Lecigne from its Threat Analysis Group (TAG) with discovering the vulnerability that was found on November 24 and swiftly patched by the company. At the moment, it is unclear whether other browsers and applications that are also based on Google's open-source Chromium browser project are also affected by the flaw, or when they will receive updates with security patches.

Is the Samsung Galaxy Z Flip 5 the best foldable phone you can buy in India right now? We discuss the company's new clamshell-style foldable handset on the latest episode of Orbital, the Gadgets 360 podcast. Orbital is available on Spotify, Gaana, JioSaavn, Google Podcasts, Apple Podcasts, Amazon Music and wherever you get your podcasts.
Affiliate links may be automatically generated - see our ethics statement for details.
 
Post your comments

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Further reading: Google Chrome, Chrome, Google, Chrome security, Google Chrome update
Nothing Phone 2 Price in India Gets a Permanent Price Cut; Now Starts at Rs. 39,999
UN to Educate Over 22,000 Staff Members on Blockchain, Web3: Here’s Why
Advertisement

Related Stories

Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Here's How Much the Poco X8 Pro Series Could Cost in India
  2. Vivo T5x 5G Goes Official in India With 7,200mAh Battery
  3. Oppo K14 5G Debuts With 7,000mAh Battery at This Price in India
  4. Samsung Galaxy M17e 5G Debuts With 6,000mAh Battery at This Price in India
  5. Best Mobiles Under Rs. 25,000 in India
  6. Samsung Galaxy Z TriFold Sales to Wind Down Just Three Months After Launch
  7. Realme P4 Lite 5G Roundup: Price in India, Specifications Expected
  8. Samsung Could Equip Galaxy Z Fold 8, Wide Fold With These Batteries
  9. Oppo Find X9 Ultra Specifications Leaked in Detail Ahead of Global Launch
  10. Apple Launches AirPods Max 2 With New H2 Chip, Improved ANC: See Details
#Latest Stories
  1. Poco X8 Pro Series Launched in India With Up to 9,000mAh Battery, 50-Megapixel Camera: Price, Specifications
  2. OnePlus Pad 3 Tipped to Launch With 13.2-Inch Display, Snapdragon 8 Elite Gen 5 Chip
  3. Vivo X500 Series Chipsets Tipped Months Ahead of Launch; Vivo Pro Max Could Also Debut
  4. Oura Ring 4 Launched in India With Smart Sensing Technology and HRV Tracking: Price, Specifications
  5. Sony's Upgraded PSSR Upscaler Is Rolling Out to Silent Hill f, Crimson Desert and More Games on PS5 Pro
  6. Google, Amazon, Microsoft and Others Join Hands to Fight Online Scams and Fraud
  7. Oppo K14 5G Launched in India With 7,000mAh Battery, 50-Megapixel Camera: Price, Specifications
  8. Operation Atlantic: Canada, UK and US Conduct Joint Operation to Disrupt Crypto Fraud Networks
  9. Samsung Galaxy Z TriFold Sales Set to End Just Three Months After Launch: Report
  10. Samsung Galaxy Z Fold 8, Wide Fold to Feature Larger Batteries Than Last Year’s Galaxy Z Fold 7: Report
Gadgets 360 is available in
Follow Us
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.