Google yesterday released an interim security update for its Chrome web browser to fix a security flaw that was exploited in the wild. The vulnerability has been identified as CVE-2021-37973, is a use-after-free flaw in the Portals API, a page navigation mechanism that allows a website to display another page as an inset and conduct a smooth migration to a new phase, where the previously-inset page turns the top-level document.
The issue was discovered by Clément Lecigne of the Google Threat Analysis Group to assist a bulk of people to fix the flaw as early as possible, however more details regarding the flaw haven’t been disclosed yet.
Earlier, Apple was also spotted patching a widely hit security flaw in the old version of ios and macOS (CVE-2021-30869), which the TAG defined as “used in collaboration with an N-day remote code execution hitting WebKit.”
Since the past 10 months, Google has patched around 12 zero-day vulnerabilities present in Chrome
How do I apply to the most recent security update?
To minimize the risk linked with the flaw, Chrome users should update to the newest version (94.0.4606.61) for Windows, Mac, and Linux by simply pressing > Help > ‘About Google Chrome.’