Google's developers have released a new version of the Chrome web browser. This closes four security vulnerabilities.

They close four security gaps that attackers can usually abuse with manipulated websites. If they get victims to view them through links in emails or messages, they often succeed in planting malicious code.

Google only ever releases rudimentary information about patched vulnerabilities that external IT security researchers have reported. Therefore, there is only any information about two of the gaps; the status of the other two remains unclear.

Google Chrome: Two high-risk security vulnerabilities fixed

The update includes 4 security fixes. Below, you find more information regarding 2 of the vulnerabilities. The Chrome Security Page offer more information. Both vulnerabilities that Google's developers have commented on in the Releases Blog are type confusion vulnerabilities in the V8 JavaScript engine. Data types can be processed that the program code does not expect - and thus enable access outside of designated memory areas. The developers do not yet provide CVE numbers, but they assess the risk as high.

• [324596281] High CVE-2024-1938: Type Confusion in V8.

• [323694592] High CVE-2024-1939: Type Confusion in V8.

The errors are fixed in Chrome versions 122.0.6261.89 for iOS, 122.0.6261.94 for macOS and 122.0.6261.94/.95 for Windows. The extended stable versions also land at version 122.0.6261.94 for macOS and 122.0.6261.95 for Windows.

To ensure that the browser is already running in the latest version, just click on the settings menu, which can be found to the right of the address bar under the icon with the three stacked dots, and then click Help - About Google Chrome.

The version dialog shows the currently running version of the browser and starts the update process if available. At the end, the dialog prompts you to restart the web browser.