Copyright © 2022, Quiller Media, Inc.
AppleInsider is supported by its audience and may earn commission as an Amazon Associate and affiliate partner on qualifying purchases. These affiliate partnerships do not influence our editorial content.
Google has issued its third urgent update for Chrome, one that patches another zero-day vulnerability in the highly-used desktop web browser.
Released on Thursday, the Stable Channel Update for Google Chrome's desktop variant brings the browser to version 100.0.4898.127, on macOS, Windows, and Linux. According to Google, the update will roll out over the coming days and weeks, but users may want to force the update earlier.
The update includes a pair of security fixes, including a "type confusion" vulnerability designated as CVE-2022-1364. The bug was reported by a member of the Google Threat Analysis Group on April 13, with Google rapidly bringing out a fix for it, writes The Register.
The bug in question is reckoned to be a high-severity zero-day, which is actively being used by attackers. Once performed, it can cause a browser to crash or trigger an error, which has the potential to allow arbitrary code to be executed.
The type of bug is similar to an issue that Google patched on March 26, which involved another "type confusion" weakness in Chrome's V8 JavaScript engine. Again, the latest exploit uses the same vector of the V8 JavaScript engine.
Google says it is "aware that an exploit for CVE-202201364 exists in the wild," a factor that contributed to the quick creation of a fix. However, rather than provide explicit details of the bug, Google says it is restricting access to that information until "a majority of users are updated" and therefore protected.
The update to the new version can be performed automatically for the user, though it can be manually performed in macOS by selecting "Chrome" in the main menu followed by "About Google Chrome." Once the update has been downloaded, click "Relaunch."
I’ve settled on Safari as my primary browser and keep only one other browser, Firefox, just in case I encounter a website with Safari issues. But that hasn’t happened lately at all. Chrome is on my “Do not Use” list.
I'm running OS 12.13.1 on a Intel-powered Mac. "About Google Chrome" reports the following: Chrome is up to dateVersion 100.0.4896.127 (Official Build) (x86_64) Just wondering if the version number in this article is incorrect (XXXX.4098.XXX versus my 4896) or is the version number different for M1 Macs?
This is actually more than just a browser concern since it involves the V8 JavaScript engine which is the basis for Node.js, the underlying technology used in Electron apps, like Visual Studio Code. However, it sounds like they patched the more generic V8 issue earlier. I wouldn’t point any fingers at Google here because the root cause of this specific issue is really tied to the “type inference” feature (or flaw depending on your viewpoint) of JavaScript. People who came into programming via C based languages and especially C++ with its “strong typing,” which is the polar opposite of type inference, often see languages like JavaScript as being a little too loosey-goosey or weak in the knees because they allow things that would be punished in C++ to be quietly ignored in these weaker languages, like JavaScript. It’s not like programmers can’t do lots of really stupid things in C/C++, but in most cases these strongly typed languages force the programmer to advertise their intention up-front, in the code (explicit casting) for everyone to see (and question) rather than quietly hiding what could be fatal flaws that arise when type inference goes wrong. Why do we allow loosey-goosey things to exist in code? Because the emphasis for software development has shifted somewhat from correctness, infinitesimal detailed knowledge/attention to detail, and memory efficiency to productivity, ease of programming, and rapid application development. To avoid total chaos the newer “productivity” languages and development tools assume more responsibility for encapsulating the rote details inside the language implementation, and optimization techniques in the compilers and runtime engines manage the resulting inefficiencies and bloat as well as they can, but they too are never perfect because all of the safeguards are also developed by people who occasionally make mistakes, like what happened here. Of course these issues should be caught during testing, but that is another topic of discussion.
lkrupp said: I’ve settled on Safari as my primary browser and keep only one other browser, Firefox, just in case I encounter a website with Safari issues. But that hasn’t happened lately at all. Chrome is on my “Do not Use” list. Chrorme is so write happy to SSDs even on windows that any other browser is better:
Chrorme is so write happy to SSDs even on windows that any other browser is better:
maximara said: lkrupp said: I’ve settled on Safari as my primary browser and keep only one other browser, Firefox, just in case I encounter a website with Safari issues. But that hasn’t happened lately at all. Chrome is on my “Do not Use” list. Chrorme is so write happy to SSDs even on windows that any other browser is better: I wonder if Safari simply relies on the virtual memory system being efficient enough, and just keeps everything in RAM? The other browsers may be performing their own data caching due to a (probably informed) belief that it gives better speed - in which case, the data being written is explicitly measurable rather than being subsumed into the memory paging. I'm not sure this graph tells us anything meaningful.
I wonder if Safari simply relies on the virtual memory system being efficient enough, and just keeps everything in RAM? The other browsers may be performing their own data caching due to a (probably informed) belief that it gives better speed - in which case, the data being written is explicitly measurable rather than being subsumed into the memory paging. I'm not sure this graph tells us anything meaningful.
A questionable rumor appeared on Thursday morning, claiming that Apple is working on iCloud Time Machine and a new range of AirPort routers. Here are reasons why Apple may — or may not — be pursuing the idea.
Double Fine Productions has launched its popular platform adventure game "Psychonauts 2" on the Mac, with the title currently available from the App Store for both Intel and Apple Silicon.
On Thursday, Pixelmator Pro rolled out version 2.4.3, improving and expanding upon syncing optimizations alongside coloring functionality tweaks.
Apple recently started selling officially refurbished models of the Apple Watch Series 7. Here is how they differ from retail versions and whether they are worth the savings.
The Sony WH-100XM5 are a new revision of the popular headphones priced at $400, here's how they compare to Apple's AirPods Max as we go hands on.
Spotify and Apple Music are the heavyweights of the music streaming industry, but which is better isn't clear-cut.
Amazon has updated its Fire 7 tablet for 2022 to make it faster and boost battery life, but it's unlikely to draw many potential buyers away from Apple's standard 10.2-inch iPad or the iPad mini, except for the highly cost-conscious.
Sony used May to unveil its Xperia 1 IV, a content creation-focused smartphone with some new camera tricks. Here's how its features compare against Apple's iPhone 13 Pro Max.
Apple fails bid to shut down refiled Cydia antitrust lawsuit
Senators ask Apple, Google to stop collecting data that could identify abortion seekers
Apple workers in Atlanta drop union vote request, citing intimidation tactics
Samsung's Memorial Day Sale knocks up to $1,550 off Galaxy smartphones, 2022 TVs, home appliances
If the US government is good at anything, it's failing at technology
Best iPad apps for writers in 2022
Best Buy Memorial Day 2022 Sale: save up to $1,000 with deals in every category
How to set up Legacy Contacts in iOS 15
A questionable rumor appeared on Thursday morning, claiming that Apple is working on iCloud Time Machine and a new range of AirPort routers. Here are reasons why Apple may — or may not — be pursuing the idea.
Double Fine Productions has launched its popular platform adventure game "Psychonauts 2" on the Mac, with the title currently available from the App Store for both Intel and Apple Silicon.
On Thursday, Pixelmator Pro rolled out version 2.4.3, improving and expanding upon syncing optimizations alongside coloring functionality tweaks.
Apple recently started selling officially refurbished models of the Apple Watch Series 7. Here is how they differ from retail versions and whether they are worth the savings.
The Sony WH-100XM5 are a new revision of the popular headphones priced at $400, here's how they compare to Apple's AirPods Max as we go hands on.
Apple's smart speaker family could expand in the future, with speculation of a new HomePod release on the way. Here's what Apple is rumored to be preparing to launch.
Alogic's first monitor, Clarity, echoes Apple's styling in many ways. While the Studio Display has incredible picture quality, Alogic aims for more flexibility.
We got our hands on the new OnePlus 10 Pro and compared to Apple's latest iPhone 13 Pro line for this in-depth showdown.
GoCube, the maker of Bluetooth-enabled puzzle cubes, has released its newest product — GoDice. We took a look at these fun new dice to see if they'd be a worthy addition to game night.
The StarTech Thunderbolt 4 Dock adds ten ports to your Mac via a single cable with three downstream Thunderbolt ports at a high price.
The Iodyne Pro Data offers storage for creative professionals working in teams, combining multiple Thunderbolt connections with high capacity NVMe SSD storage, in an appliance accessible by multiple users.
The Monoprice 28-inch CrystalPro 4K monitor looks like a competitive budget monitor on paper, but audible coil noise and poor design ruin its potential.
Tronsmart's new Bang speaker can pair with up to 100 other Bang units to fill a large space with sound, but there are several spots where the speaker could see improvement.
AppleInsider is one of the few truly independent online publications left. If you love what we do, please consider a small donation to help us keep the lights on.
If you love AppleInsider and want to support independent publications, please consider a small donation.