Google has released Chrome update 91.0.4472.101, which fixes 14 vulnerabilities, including CVE-2021-30551, which is already used by attackers in exploits (0-day). Details have not yet been disclosed, it is only known that the vulnerability is caused by incorrect handling of types (Type Confusion) in the V8 JavaScript engine.
The new version also fixes another dangerous vulnerability CVE-2021-30544, caused by memory access after it is freed (use-after-free) in the transition cache (BFCache, Back-forward cache), used for instant transition when using the "Back" buttons β and βForwardβ or when navigating through previously viewed pages of the current site. The problem has been assigned a critical severity level, i.e. it is indicated that the vulnerability allows you to bypass all levels of browser protection and is enough to execute code on the system outside the sandbox environment.
Source: opennet.ru