Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
===========================================================================
AUSCERT Security Bulletin
ASB-2020.0004
Google Chrome 79.0.3945.117 released
8 January 2020
===========================================================================
AusCERT Security Bulletin Summary
---------------------------------
Product: Chrome
Operating System: Windows
UNIX variants (UNIX, Linux, OSX)
Impact/Access: Execute Arbitrary Code/Commands -- Remote with User Interaction
Denial of Service -- Remote with User Interaction
Reduced Security -- Unknown/Unspecified
Resolution: Patch/Upgrade
Member content until: Friday, February 7 2020
OVERVIEW
Google Chrome version 79.0.3945.117 has been released, fixing one
high-priority vulnerability and two other unspecified
security issues. [1]
IMPACT
Google has awarded $7,500 for a vulnerability (CVE still TBD)
involving a use-after-free in audio. [1]
MITIGATION
Google advises updating to Chrome version 79.0.3945.117 or later
to address these vulnerabilities. [1]
REFERENCES
[1] Google Chrome Stable Channel Update for Desktop
https://chromereleases.googleblog.com/2020/01/stable-channel-update-for-desktop.html
AusCERT has made every effort to ensure that the information contained
in this document is accurate. However, the decision to use the information
described is the responsibility of each user or organisation. The decision to
follow or act on information or advice contained in this security bulletin is
the responsibility of each user or organisation, and should be considered in
accordance with your organisation's site policies and procedures. AusCERT
takes no responsibility for consequences which may arise from following or
acting on information or advice contained in this security bulletin.
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert@auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967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=r9OY
-----END PGP SIGNATURE-----