Summary: Google and Mozilla have released Chrome 135 and Firefox 137, addressing nearly two dozen security vulnerabilities, including high-severity memory safety bugs. Chrome 135 includes 14 security fixes, while Firefox 137 resolves eight security defects, some of which could lead to code execution. Users are encouraged to update their applications promptly, as no active exploitation of these vulnerabilities has been reported.
Affected: Google Chrome, Mozilla Firefox
Keypoints :
- Chrome 135 fixes include nine issues reported by external researchers, with a critical use-after-free flaw noted.
- Google offered ,000 in bug bounty rewards, with the highest payout being ,000 for a Custom Tabs implementation issue.
- Firefox 137 addresses three high-severity flaws and resolves vulnerabilities that could lead to information disclosure and URL bar spoofing.
Source: https://www.securityweek.com/chrome-135-firefox-137-patch-high-severity-vulnerabilities/
Views: 7