CVE-2022-0971

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 99.0.4844.74 Google Chrome versions prior to 98.0.4758.132 (Extended Stable)

Description The issue is related to a use-after-free problem in the Blink Layout module, which can be exploited by a remote attacker using a specially crafted HTML page, potentially leading to arbitrary code execution or denial of service. The vulnerability is associated with the Blink browser engine used by Google Chrome and Microsoft Edge. Google has released updates for Chrome, versions 99.0.4844.74 and 98.0.4758.132 (Extended Stable), which fix this critical vulnerability along with 10 other security issues. In 2021, there were 14 zero-day exploits of Chrome vulnerabilities, making it a highly targeted browser among hackers.

Recommendations For Google Chrome versions prior to 99.0.4844.74, update to version 99.0.4844.74 or later. For Google Chrome versions prior to 98.0.4758.132 (Extended Stable), update to version 98.0.4758.132 or later. As a temporary workaround, consider restricting access to potentially vulnerable modules or functions until a patch is applied.