Google Chrome Plagued by Zero Day Bug Under Passive ExploitationPatch the Chrome browser as a bug found by Kaspersky Labs is in passive use. Not many technical details have been released yet since it takes time for people to upgrade their apps. The two vulnerabilities are close to another Zero-day successfully exploited which was found back in March. Chrome users on Linux and Windows macOs can immediately upgrade their software to version 78.0.3904.87. Everything older than that is afflicted by two “use-free” bugs, which are actually being exploited in the wild. The first is “Cve-2019-13720,” referring to the audio portion of the browser, while the second is “Cve-2019-13721” and it is on the Pdfium. According to Google, the flaw in the audio portion is currently being actively exploited in the wild, and can lead to hijacking of computers. Although no technical details have yet been revealed, the essence of the vulnerability is the attacker’s access to memory after it has been released. This can open the door to arbitrary remote execution of code which can potentially lead to step-by-step takeover of the system. Chrome or one of its tabs may in other cases be forced to crash conditions. Google says they’ll consider sharing more technical information about the bugs after most users update to the latest version. For addition, there is also the case of those using Chrome-based browsers such as Brave Vivaldi and Opera who will receive the bug-fixing update a little later. Chrome and Chrome-based browsers must automatically take care of updates and retrieval of usable patches. But, if you still use an older version for whatever reason go to the Chrome setting panel and pick “About Chrome.” You will see the client version there and the app will search for any changes that may be available.