Google’s Project Zero is very quick to point out security flaws in other company’s products, but the search giant is far from being perfect itself. Two recently discovered zero-day vulnerabilities in Chrome have just been fixed with a new patch.
CVE-2020-16009 and CVE-2020-16010 are remote code-execution and heap-based buffer overflow flaws respectively and affect both the desktop and Android versions of Google’s web browser.
News of the flaw was shared on Twitter by Ben Hawkes:
To ensure that you have a safe version of Chrome installed, you will need to update. On the desktop, head to the About screen and a check will be performed. On Android, you will need to launch Google Play and check for updates.