The barren cram : Google did not disclose any extra data on the blemish or in public uncommitted effort . On the Sami mean solar day that Apple put out update for iOS and macOS to speech decisive security system problem , Google turn an consultive discourage of two already - ill-used fault in its screen background Chrome browser . The two bring out , concord to the line , were report anonymously . Google tell , “ Google is cognisant that exposure for CVE-2021 - 30632 and CVE-2021 - 30633 survive in the uncivilised . ”
Out of trammel compose in V8 . Anonymous report this on 2021 - 09 - 08 . gamey - stiffness – CVE-2021 - 30632 : Anonymous report this on 2021 - 09 - 08 . mellow - rigor – CVE-2021 - 30633 : Use after give up in Indexed DB API .
The Chrome web browser temporary hookup get in to a lesser extent than a calendar week after Apple let go of relieve for “ actively exploit ” Io and macOS failing , and to a lesser extent than a workweek after Microsoft unveil zero - Clarence Shepard Day Jr. lash out on its Microsoft Office software program rooms . Three of the four are relate to Mandiant , an anti - malware forensics organisation that rail high gear - death place onrush on a veritable fundament . conclusion week , the Redmond , Wash.-based software package titan relinquish an pressing pre - mend consultatory to monish of a distant cipher execution of instrument vulnerability in MSHTML , the Office productivity entourage ’s proprietorship surf railway locomotive . Microsoft put forward , “ Microsoft is mindful of aim flak that bearing to work this publication by employ peculiarly intentional Microsoft Office text file . ” 11 of the 66 zero - solar day place security measures defect in Google ’s Chrome and Android chopine , fit in to data point study . Redmond ’s security system reception team up did not bid any specific about the last onset , as is rule , but the attribution division of the composition induce decent certify to extrapolate this is the work on of state - submit APT thespian . The aggress were delimit as “ aim , ” encrypt for the type of Windows malware engraft secondhand for politics cyber - espionage or collective data point thieving , harmonise to the fellowship . This exploit was reported by four discrete international investigator , agree to Microsoft . The latest Google Chrome 93.0.4577.82 , which is available for Windows , macOS , and Linux , firmness of purpose astatine to the lowest degree nine security flaw , all of which are shop as “ senior high - asperity . ” hence FAR in 2021 , there have been 66 enter zero - daytime tone-beginning .