Google fixes Chrome zero-day vulnerability

The maker of the browser stated in a security alert released on Monday that “Google is aware that an exploit for CVE-2022-2294 exists in the wild.”

Google estimates that it will take days or weeks for the full user base to receive the 103.0.5060.114 version, which is currently rolling out globally in the Stable Desktop channel.

If heap overflow exploitation is successful, the effects can include everything from software crashes and unfettered code execution to evading security measures.

“We will also keep the limits if the bug is in a third-party library that other projects also rely on but haven’t corrected yet,” the statement continued.

Google stated, “Access to problem details and links may be kept limited until the majority of users are informed of a patch.”