From latesthackingnews.com
This week, Google has rolled out the second major update for its Chrome browser that addresses a zero-day. As explained in its advisory, an anonymous researcher notified Google about a Type Confusion vulnerability in Chrome’s V8 component. Specifically, V8 is an open-source JavaScript engine forming the core of Google’s Chromium project. Any potential vulnerability in such a critical component can also affect all Chromium-based browsers (like Microsoft Edge). Google has admitted to having found active exploitation of the flaw CVE-2022-1096. They have therefore rushed to fix the bug before it could lead to further devastating results. The extent of the bug’s severity is visible from the fact that this browser update includes only one vulnerability fix.