Google Fixes Two Chrome Zero-Days; Windows Affected by Local Privilege Escalation Zero-Day

upstart writes:

Emergency Google Chrome update fixes zero-days used in attacks:

Google has released Chrome 95.0.4638.69 for Windows, Mac, and Linux to fix two zero-day vulnerabilities that attackers have actively exploited.

"Google is aware that exploits for CVE-2021-38000 and CVE-2021-38003 exist in the wild," Google disclosed in the list of security fixes in today's Google Chrome release.

upstart writes:

All Windows versions impacted by new LPE zero-day vulnerability:

Read more of this story at SoylentNews.