MILLIONS of Google Chrome users have been urged to update the browser app after researchers discovered a dangerous high-level vulnerability.
The vulnerability, assigned the CVE identifier CVE-2024-5274, is a type confusion bug in the V8 JavaScript and WebAssembly engine.
The issue was reported on May 20 by the Google Threat Analysis team and Chrome Security.
Type confusion security breaches occur when a program attempts to access a resource with an incompatible type.
The security breach led to an “out of bounds memory access” issue in Chrome’s V8 JavaScript engine.
The vulnerability was already being actively exploited before Google patched it.
Experts have now urged Google Chrome users to upgrade to Chrome version 125.0.6422.112/.113 for Windows and macOS, and version 125.0.6422.112 for Linux to mitigate potential threats.
Users of Chromium-based browsers such as Microsoft Edge, Brave, Opera and Vivaldi are also advised to apply the fixes as they become available.
- CVE-2024-0519 – Out-of-range memory access in V8
- CVE-2024-2886 – Use-after-free in WebCodecs
- CVE-2024-2887 – Type confusion in WebAssembly
- CVE-2024-3159 – Out-of-range memory access in V8
- CVE-2024-4671 – Use-after-free in Visuals
- CVE-2024-4761 – Writing out of bounds in V8
- CVE-2024-4947 – Type confusion in V8
HOW TO STAY SAFE
To protect yourself from the zero-day vulnerability, update your Chrome browser immediately,
Click the three-dot menu icon at the top right, then tap Settings.
On the left, click About Chrome. Here Chrome checks for updates and downloads them automatically.
If and when an update is ready, click ‘Restart to Update’ to apply it.
There are a few things you can do to protect your device from malware and vulnerabilities.
To start, only install apps from the Google Play Store. This helps ensure that the apps you download are safe.
Be careful when clicking links in emails or text messages, as they often lead to phishing websites.
It helps a lot to use a security app with malware protection on your device
It comes after Google unveiled an all-seeing AI camera tool that remembers where you left your glasses and other belongings.
In a demo video, Google showed someone asking, “Where did I put my glasses?” and the tool immediately remembered that it had seen them.
“To be truly useful, an agent must understand and respond to the complex and dynamic world just as humans do – and record and remember what it sees and hears to understand the context and take action,” explains Demis Hassabis, Google’s boss, out. AI division DeepMind.
“It should also be proactive, educational and personalized so that users can interact with it naturally and without lag or delay.”
Google has announced a series of major upgrades to its AI efforts as it battles to keep up with ChatGPT maker OpenAI.
The announcement comes a day after OpenAI surprised the world again with its new Chat-GPT4o technology that can also see and respond.
Bosses showed how to solve math by simply holding the camera up to a piece of paper, and how to figure out someone’s mood just by looking at his or her face.
THE BATTLE FOR AI
Analysis by Jamie Harris, Senior Technology and Science Reporter
The AI battlefield is heating up as all the major players in the technology compete for a piece of the action.
Google’s annual I/O event has been on the calendar for months, and OpenAI boldly announced that a surprise “spring update” would take place the day before.
One expert described Chat-GPT4o as making other voice assistants look “completely primitive.”
Apple is reportedly closing a deal with OpenAI to improve Siri on the iPhone.
All this only takes place in the field of voice assistants.
AI becomes inevitable.
Everything from web searches – as Google announced today – to the photos you take on your phone has some form of AI influence these days