Apple’s macOS, Google Chrome release security bug fixes

Updates fixing the security bugs were released on Tuesday 

November 03, 2022 03:18 pm | Updated 03:21 pm IST

A file photo of Google logo is placed on the Apple MacBook

A file photo of Google logo is placed on the Apple MacBook | Photo Credit: Reuters

High-severity security bugs were reported in some versions of Apple’s macOS, Google Chrome and Microsoft Edge browsers. India’s Computer Emergency Response Team released vulnerability notes recommending users update their devices to the latest software versions.

Apple’s macOS

Multiple high-severity security bugs were detected in macOS that could allow attackers to gain elevated privileges, execute arbitrary codes, disclose sensitive information, and bypass security restrictions.

(For insights on emerging themes at the intersection of technology, business and policy, subscribe to our tech newsletter Today’s Cache.)

Security bugs could also be exploited to cause a denial of services on targeted systems.

Apple in its security updates shared that apps could exploit bugs to modify protected parts of the file system, disclose user information using maliciously crafted audio files, and access private information by accessing root privileges.

The bugs were reported to exist due to problems in various components of Apple’s macOS Ventura, Big Sur, and Monterey.

Google Chrome

A security bug being exploited in the wild was reported in Chrome for Mac, Linux and Windows.

The security bug could allow a remote attacker to execute arbitrary code on targeted systems by sending a specially crafted request.

The bug was found to exist in Chrome due to a type of confusion error in the V8 engine of the browser.

CERT-In, in its vulnerability notes, requested users to urgently apply security patches released by Google.

Microsoft Edge

Security bugs in Microsoft Edge that could allow a remote attacker to execute arbitrary code are being exploited in the wild.

According to vulnerability notes released by CERT-In, the bugs in Edge (Chromium-based) exist due to a type of confusion error in the V8 engine of the browser.

The security bug could be exploited by attackers by sending a specially crafted request on targeted systems.

Microsoft in its security updates shared that the bug exists because “Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability”.

Top News Today

Comments

Comments have to be in English, and in full sentences. They cannot be abusive or personal. Please abide by our community guidelines for posting your comments.

We have migrated to a new commenting platform. If you are already a registered user of The Hindu and logged in, you may continue to engage with our articles. If you do not have an account please register and login to post comments. Users can access their older comments by logging into their accounts on Vuukle.