Google Chrome Security Update – released 2nd August 2022

Google has released the latest security update for Chrome browser that upgrades the build of the Chrome browser and addresses 27 bug fixes and security threats. We look at the key aspects of this month’s Chrome security update and the kind of vulnerabilities addressed in the latest security update.

Salient points about the security update for Chrome browser for August 2022

  • The latest security update will upgrade the Chrome build to version 104.0.5112.81 across Windows devices. Build 104.0.5112.81 becomes the stable release version of the Chrome browser on Windows.
  • On Mac and Linux the stable release version of the Chrome browser as of August 2022 is Chrome 104.0.5112.79.
  • It will supersede previous month’s security update that upgraded Chrome browser to version 103.0.5060.53.
  • Chrome beta is now on version 105.0.5195.19 and the Chrome dev channel is now on version 106.0.5216.6 for Windows, Mac & Linux. In case you are keen to adopt the beta or dev channel versions of Chrome, you can participate in the beta channel of Chrome updates.
  • Since the Chrome browser is based on the open source Chromium project, most Chromium vulnerabilities affect Google Chrome browser as well.
  • Out of 27 vulnerabilities shared by Google as part of the Chrome project, 7 have HIGH levels of severity and others have MEDIUM level of severity.
  • Details of vulnerabilities are not publicly available. This is inline with the security policy to ensure that the impacted computer systems, Android devices and mac iOS systems are patched before public disclosure of the threats.
  • The latest update will be rolled out automatically over the next few weeks. If you wish to install the latest update immediately, you can do so by performing a manual update of the Chrome browser.

Vulnerabilities addressed in Google Chrome version 104.0.5112.81 for Windows Desktops

The following threats have been tracked as part of the Google Chrome security update that upgrades Chrome stable release version to 104.0.5112.81 on Windows. For Mac and Linux the build is 104.0.5112.79.

CVE-2022-2609 – This is a ‘Use after Free’ (UAF) vulnerability in Nearby Share. It has a HIGH severity rating. The UAF vulnerability arises on account of incorrect dynamic memory allocation. An attacker can exploit the memory allocation flaw to initiate attacks.

CVE-2022-2608 – This is a ‘Use after Free’ (UAF) vulnerability in the Oveview mode. The overview mode is a part of the Chrome OS that allows you to see all the open windows in a single screen. The vulnerability has a HIGH severity rating.

CVE-2022-2607 – This is another ‘Use after Free’ vulnerability on the WebUI. It actually affects the Tab strip on the browser. The vulnerability has a HIGH severity level. The cause of the vulnerability is improper dynamic memory allocation. The flaw in memory allocation can offer an attacker the opportunity to exploit the loophole and attack the target system. ‘WebUI’ is the web user interface of the Chrome browser and includes components of web technologies like HTML, CSS, JavaScript.

CVE-2022-2606 – This vulnerability the Managed devices API. This vulnerability has a HIGH severity level and is of the type of ‘Use after Free’ or ‘UAF’ threat.

CVE-2022-2605 – This vulnerability has a HIGH severity level. It affects the Dawn module. The vulnerability is caused because of out of bound read on the Dawn module on the Chromium project.

CVE-2022-2604 – This vulnerability affects the ‘Safe browsing’ aspect of the Chrome browser. It carries a HIGH level vulnerability. It is caused due to improper dynamic memory allocation, thereby causing a ‘Use after Free’ or UAF type of vulnerability.

CVE-2022-2603 – The vulnerability is a ‘Use after Free’ type of vulnerability that affects the Omnibox component of the Chromium projects. Omnibox is the top most bar on the Chrome browser that combines the address bar and the search bar in to a single omni bar.

Apart from these 7 HIGH severity vulnerabilities, there are other vulnerabilities that have a MEDIUM severity level. In all, 27 vulnerabilities have been disclosed as part of the August security bulletin for Chrome browser.

How can I update Chrome browser on Windows Desktops?

You can update Chrome browser on a Windows desktop computer using the following process:

  1. On your computer, open Chrome.
  2. At the top right, click More More.
  3. Click Help and then About Google Chrome.
  4. Click Update Google Chrome.
    • Important: If you can’t find this button, you’re on the latest version.
  5. Click Relaunch.

How can I update Chrome browser on Mac?

The process to update Chrome browser manually remains the same on Mac computers.

  1. On your computer, open Chrome.
  2. At the top right, click More More.
  3. Click Help and then About Google Chrome.
  4. Click Update Google Chrome.
    Important: If you can’t find this button, you’re on the latest version.
    Click Relaunch.

Mac computers should be on 104.0.5112.79 build for the Chrome browser.

How can I update Chrome browser on Linux computers?

When you install Chrome browser on Linux machines, Google installs a repo for Chrome browser. As and when an update is released for the Chrome browser, the repo is used to push the updates automatically on the Linux machines.

As a Linux administrator, you can choose to disable automatic Chrome updates. If you prefer to manually update Chrome browser on Linux, you can use the following commands:

  1. sudo apt-get update to fetch a list of updates
  2. . sudo apt-get –only-upgrade install google-chrome-stable. This command will install the Chrome stable release for Linux through the terminal.

How do I upgrade Chrome on Android devices?

On Android devices, you can update Chrome through one of the following methods:

  • Open the Chrome browser on the Android device. From the ‘More’ options, you can get an option to update Chrome manually to the latest build.
  • Or, you can visit the Google Play Store. If you have the Chrome app on your Android device, Play Store will allow you to download and install the latest security update for Chrome on the Android device.

How do I update Chrome on iPhone and iOS devices?

You can update Chrome on iOS devices through the Apple app store. You need to install the Chrome app on the iOS device to fetch updates through the Apple app store. The installation is straight forward for the iOS devices.