Chrome and Firefox have released urgent updates that fix more than 70 vulnerabilities, including multiple critical and high-severity memory safety flaws that could enable remote code execution. Google and Mozilla say there is no evidence that these issues are being actively exploited, but several bugs could still lead to sandbox escape or arbitrary code execution. #Chrome #Firefox #Mozilla #Google
Keypoints
- Chrome has been updated to versions 149.0.7827.155/.156 to fix 33 security flaws.
- Six of Chromeβs critical bugs are use-after-free issues that may enable remote code execution.
- The Chrome patch also addresses 26 high-severity vulnerabilities, including buffer overflow and out-of-bounds read bugs.
- Firefox 152 fixes 40 vulnerabilities, including 13 high-severity issues such as use-after-free and sandbox escape flaws.
- Mozilla also released security updates for Firefox ESR, Thunderbird, and Firefox for iOS.