{"id":17181,"date":"2024-04-01T19:36:09","date_gmt":"2024-04-01T11:36:09","guid":{"rendered":"https:\/\/www.microdium.com\/public\/?p=17181"},"modified":"2024-04-01T19:37:50","modified_gmt":"2024-04-01T11:37:50","slug":"ma-1054-042024-mycert-advisory-security-updates-google-chrome-browser","status":"publish","type":"post","link":"https:\/\/www.microdium.com\/public\/2024\/04\/01\/ma-1054-042024-mycert-advisory-security-updates-google-chrome-browser\/","title":{"rendered":"MA-1054.042024: MyCERT Advisory &#8211; Security Updates-Google Chrome Browser"},"content":{"rendered":"<p><strong>1.0 Introduction<\/strong><br \/>\nGoogle has released security updates to address multiple vulnerabilities in the Chrome browser. This security update addresses 7 security vulnerabilities, including the following critical and high severity issues.<\/p>\n<p><strong>2.0 Impact<\/strong><br \/>\nAllows the attackers to remotely execute malicious code on a victim\u2019s machine or compromise sensitive data.<\/p>\n<ul>\n<li>Critical (CVE-2024-2883): A use-after-free vulnerability in ANGLE.<\/li>\n<li>High (CVE-2024-2885): A use-after-free vulnerability in Dawn.<\/li>\n<li>High (CVE-2024-2886): A use-after-free vulnerability in WebCodecs.<\/li>\n<li>High (CVE-2024-2887): A type confusion vulnerability in WebAssembly.<\/li>\n<\/ul>\n<p><strong>3.0 Affected Products<\/strong><br \/>\nThe affected Chrome browsers are:<\/p>\n<ul>\n<li>Google Chrome for Windows, Mac, Linux, and Android.<\/li>\n<\/ul>\n<p><strong>4.0 Recommendations<\/strong><br \/>\nUsers are recommended to update to version 120.0.6099.129 for macOS and Linux and 120.0.6099.129\/130 for Windows to mitigate potential threats. Users are also encouraged to enable the automatic update function in Chrome to ensure that their software is updated promptly.<\/p>\n<p>Users and system administrators are encouraged to review the\u00a0Google Chrome security update\u00a0and upgrade to the latest version.<\/p>\n<p>Fixed versions:<\/p>\n<ul>\n<li>Stable Channel Update for Desktop\n<ul>\n<li>Chrome 123.0.6312.86\/.87 for Windows and Mac.<\/li>\n<li>Chrome 123.0.6312.86 for Linux.<\/li>\n<\/ul>\n<\/li>\n<li>Extended Stable Channel Update for Desktop\n<ul>\n<li>Chrome 122.0.6261.148 for Windows and Mac.<\/li>\n<\/ul>\n<\/li>\n<li>Chrome 123 (123.0.6312.80) for Android<\/li>\n<\/ul>\n<p>Generally, CyberSecurity Malaysia advises the users to be updated with the latest security announcements by the vendor and follow best practice security policies to determine which updates should be applied.<\/p>\n<p>For further enquiries, please contact us through the following channels:<\/p>\n<p>E-mail: cyber999[at]cybersecurity.my<br \/>\nPhone: 1-300-88-2999 (monitored during business hours)<br \/>\nMobile: +60 19 2665850 (24&#215;7 call incident reporting)<br \/>\nBusiness Hours: Mon &#8211; Fri 08:30 -17:30 MYT<br \/>\nWeb:\u00a0<a href=\"https:\/\/www.mycert.org.my\/\" target=\"_blank\" rel=\"noopener\">https:\/\/www.mycert.org.my<\/a><br \/>\nTwitter:\u00a0<a href=\"https:\/\/twitter.com\/mycert\" target=\"_blank\" rel=\"noopener\">https:\/\/twitter.com\/mycert<\/a><br \/>\nFacebook:\u00a0<a href=\"https:\/\/www.facebook.com\/mycert.org.my\" target=\"_blank\" rel=\"noopener\">https:\/\/www.facebook.com\/mycert.org.my<\/a><\/p>\n<p><strong>5.0\u00a0 \u00a0 References<\/strong><\/p>\n<ul>\n<li><a href=\"https:\/\/chromereleases.googleblog.com\/2024\/03\/stable-channel-update-for-desktop_26.html\" target=\"_blank\" rel=\"noopener\">https:\/\/chromereleases.googleblog.com\/2024\/03\/stable-channel-update-for-desktop_26.html<\/a><\/li>\n<li><a href=\"https:\/\/chromereleases.googleblog.com\/2024\/03\/chrome-for-android-update_26.html\" target=\"_blank\" rel=\"noopener\">https:\/\/chromereleases.googleblog.com\/2024\/03\/chrome-for-android-update_26.html<\/a><\/li>\n<li><a href=\"https:\/\/chromereleases.googleblog.com\/2024\/03\/chrome-for-android-update_26.html\" target=\"_blank\" rel=\"noopener\">https:\/\/chromereleases.googleblog.com\/2024\/03\/chrome-for-android-update_26.html<\/a><\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2024-2883\" target=\"_blank\" rel=\"noopener\">https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2024-2883<\/a><\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2024-2885\" target=\"_blank\" rel=\"noopener\">https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2024-2885<\/a><\/li>\n<li><a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2024-2887\" target=\"_blank\" rel=\"noopener\">https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2024-2887<\/a><\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>1.0 Introduction Google has released security updates to address multiple vulnerabilities in the Chrome browser. This security update addresses 7 security vulnerabilities, including the following critical and high severity issues. 2.0 Impact Allows the attackers to remotely execute malicious code on a victim\u2019s machine or compromise sensitive data. Critical (CVE-2024-2883): A use-after-free vulnerability in ANGLE. [&hellip;]<\/p>\n","protected":false},"author":3,"featured_media":17184,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11],"tags":[],"class_list":["post-17181","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-disaster-recovery-cybersecurity-news-malaysia"],"_links":{"self":[{"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/posts\/17181","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/comments?post=17181"}],"version-history":[{"count":1,"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/posts\/17181\/revisions"}],"predecessor-version":[{"id":17183,"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/posts\/17181\/revisions\/17183"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/media\/17184"}],"wp:attachment":[{"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/media?parent=17181"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/categories?post=17181"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/tags?post=17181"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}