Google tau tsim qhov hloov tshiab rau Chrome 93.0.4577.82, uas kho 11 qhov tsis zoo, suav nrog ob qhov teeb meem twb tau siv los ntawm cov neeg tawm tsam hauv kev siv (0-hnub). Cov ntsiab lus tseem tsis tau nthuav tawm, peb tsuas yog paub tias thawj qhov muaj qhov tsis zoo (CVE-2021-30632) yog tshwm sim los ntawm qhov yuam kev uas ua rau muaj kev tawm tsam sau rau hauv V8 JavaScript cav, thiab qhov teeb meem thib ob (CVE-2021- 30633) yog tam sim no nyob rau hauv qhov kev siv ntawm Indexed DB API thiab cuam tshuam nrog kev nkag mus rau thaj chaw nco tom qab nws tso tawm (siv-tom qab-dawb).
Lwm qhov tsis zoo muaj xws li: ob qho teeb meem tshwm sim los ntawm kev nkag mus rau lub cim xeeb tom qab nws tau tso tawm hauv Kev Xaiv thiab Tso Cai API; Kev tuav tsis raug ntawm hom (Hom tsis meej pem) hauv Blink cav; Tsis pub dhau ntawm ANGLE (Yuav luag Native Graphics Layer Cav) txheej. Txhua qhov kev tsis txaus ntseeg tau txais qhov xwm txheej txaus ntshai. Tsis muaj teeb meem tseem ceeb tau raug txheeb xyuas tias ib tus zuj zus tso cai rau ib tus neeg hla txhua theem ntawm kev tiv thaiv browser thiab ua tiav cov cai ntawm lub kaw lus sab nraum sandbox ib puag ncig.
Tau qhov twg los: opennet.ru