Advertisement
Top
image credit: Pixabay

Google patches actively exploited zero-day bug that affects Chrome users

October 26, 2020

Via: Malwarebytes
Category:

Google has recently released Chrome version 86.0.4240.111 to patch several holes. One is for a zero-day flaw – that means a vulnerability that is being actively exploited in the wild.

The flaw, which is officially designated as CVE-2020-15999, occurs in the way FreeType handles PNG images embedded in fonts using the Load_SBit_Png function. FreeType is a popular text rendering library that Chrome uses. According to the bug report filed by Sergei Glazunov, a security researcher from Google’s very own Project Zero team, the function has the following tasks:

Read More on Malwarebytes

RELATED PUBLICATIONS

Palo Alto Networks Warns of Exploited Firewall Vulnerability
Google Patches Exploited Pixel Vulnerabilities
Fortinet Warns of Severe SQLi Vulnerability in FortiClientEMS Software

Latest Publications

AI set to play key role in future phishing attacks
U.S. Gov imposed Visa restrictions on 13 individuals linked to commercial spyware activity
5 Hard Truths About the State of Cloud Security 2024
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!