Google yakagadzira imwe update kuChrome 93.0.4577.82, iyo inogadzirisa 11 kusasimba, kusanganisira matambudziko maviri atoshandiswa nevanorwisa mumabasa (0-day). Tsanangudzo haisati yaburitswa, isu tinongoziva kuti yekutanga kusagadzikana (CVE-2021-30632) kunokonzerwa nekukanganisa kunotungamira kune kunze-kwe-mabhandi kunyora muV8 JavaScript injini, uye dambudziko rechipiri (CVE-2021- 30633) iripo mukuitwa kweiyo Indexed DB API uye yakabatana nekuwana nzvimbo yekurangarira mushure mekunge yasunungurwa (shandisa-mushure-yemahara).
Zvimwe zvisizvo zvinosanganisira: matambudziko maviri anokonzerwa nekuwana ndangariro mushure mekunge yasunungurwa muSelection and Permissions API; kutadza kubata kwemhando (Type Confusion) muBlink injini; Buffer kufashukira muANGLE (Anenge Native Graphics Layer Engine) layer. Kusagadzikana kwese kwakagamuchira chinzvimbo chine njodzi. Hapana matambudziko akakosha akaonekwa ayo ega anotendera munhu kupfuura ese mazinga ekudzivirira browser uye kuita kodhi pane system kunze kwesandbox nharaunda.
Source: opennet.ru