Government Issues Urgent Warning for Google Chrome Users, Advised To Update Browser

Highlights

• Indian government warns Google Chrome users about security threats.
• Critical security issues identified by CERT-In.
• Advisory recommends updating their browsers immediately.
• Users should update to Chrome version 129.0.6668.70 or later to protect their systems.

 CERT-IN Vulnerability Note discloses that Google Chrome users are again at high risk of hacking. (Image credit – Google Chrome)

The Indian government has issued a warning for Google Chrome users. According to an advisory released, some critical Google Chrome issues have been identified that could expose the system to cyberattacks. Based on this, the Indian Government has urged Google Chrome users to update their web browsers immediately. It would be significant to protect Google accounts and devices against any potential security breaches.

The issues were highlighted in the latest CERT-In advisory (CIVN-2024-0311) issued on September 26, 2024.

The Indian Computer Emergency Response Team (CERT-In) revealed that multiple security issues have been found in Google Chrome. These could let cyber attackers execute malicious code or even crash the system.

If this happens, hackers could potentially take control of affected devices, steal sensitive data, or install harmful software.

These issues are considered high-severity because they affect all platforms. This includes Windows, macOS, and Linux alike.

“Multiple vulnerabilities have been reported in Google Chrome which could allow a remote attacker to execute arbitrary code on the targeted system.”
“These vulnerabilities exist in Google Chrome due to Use after free in Web Audio and Out of bounds write in V8. A remote attacker could exploit these vulnerabilities by persuading a victim to visit a specially crafted web page,” says CERT-In.

Issue Identified by CERT-In

The issues are related to Chrome’s JavaScript engine (V8). These involve:

• Type Confusion in V8: Errors in handling variables, leading to unintended behaviour.
• Use-after-free vulnerabilities: Improper memory clearance, which attackers can exploit.
• Inappropriate implementation: Improper handling of browser operations, leaving the system vulnerable to remote code execution.

Affected Software Versions

List of Google Chrome software versions which are affected by the issues recently identified:

• Google Chrome versions before 129.0.6668.70/.71 for Windows and Mac
• Google Chrome versions before 129.0.6668.70 for Linux

Update Chrome to Protect Your System

CERT-In recommends all Google users immediately update to the latest version of Google Chrome. This will be a significant step to safeguard these systems.

Users are advised to ensure they are using Chrome version 129.0.6668.70 or later.

How to Update Your Chrome Browser:

• Open Chrome.
• Click the three dots in the top right.
• Go to Help > About Google Chrome.

• Click “Update Google Chrome.”

FAQs

Q1. What is the recent advisory issued by the Indian government for Google Chrome users?

Answer. The Indian government has advised Google Chrome users to update their browsers immediately due to critical security issues identified by CERT-In that could expose systems to cyberattacks.

Q2. What are the security issues found in Google Chrome as per CERT-In?

Answer. CERT-In identified multiple issues in Chrome’s JavaScript engine (V8), including type confusion, use-after-free vulnerabilities, and inappropriate implementation, which could allow cyber attackers to execute malicious code or crash systems.

Q3. Which versions of Google Chrome have issues as per CERT-in?

Answer. Affected versions are Google Chrome before 129.0.6668.70/.71 for Windows and Mac and before 129.0.6668.70 for Linux. Users should update to Chrome version 129.0.6668.70 or later to safeguard their systems.

Read More: Google Chrome Enhances Browsing with New AI-Powered Features

Read More: Google Chrome Reigns Supreme as the Fastest Browser with Speedometer 3.0 Victory

Read More: Google Chrome Embraces Material You Design: A New Era of Browsing