I-Google idale isibuyekezo ku-Chrome 93.0.4577.82, elungisa ubungozi obuyi-11, okuhlanganisa nezinkinga ezimbili esezivele zisetshenziswa abahlaseli emisebenzini (0-day). Imininingwane ayikadalulwa, sazi kuphela ukuthi ukuba sengozini kokuqala (CVE-2021-30632) kubangelwa iphutha eliholela ekubhaleni okungaphandle kwemingcele enjinini ye-V8 JavaScript, kanye nenkinga yesibili (CVE-2021- 30633) ikhona ekusetshenzisweni kwe-Indexed DB API futhi ehlotshaniswa nokufinyelela indawo yenkumbulo ngemva kokuba ikhululiwe (use-after-free).
Obunye ubungozi buhlanganisa: izinkinga ezimbili ezidalwe ukufinyelela inkumbulo ngemva kokuthi ikhululiwe ku-API Yokukhetha Nezimvume; ukuphathwa okungalungile kwezinhlobo (Uhlobo Lokudideka) enjinini ye-Blink; Ibhafa lichichima kusendlalelo se-ANGLE (I-Almost Native Graphics Layer Engine). Bonke ubuthakathaka bathole isimo esiyingozi. Azikho izinkinga ezibucayi ezitholiwe ezivumela umuntu ngamunye ukuthi adlule wonke amazinga okuvikela isiphequluli futhi akhiphe ikhodi kusistimu engaphandle kwendawo ye-sandbox.
Source: opennet.ru