Google developers have released Chrome 105.0.5195.102 for Windows, Mac and Linux, where they fixed a 0-day vulnerability that hackers are already exploiting. This is the sixth zero-day vulnerability in Chrome that has been patched since the beginning of the year.
The latest issue has been identified as CVE-2022-3075 and is related to insufficient data validation in the Mojo runtime library set, which is used to pass messages across inter-process and in-process boundaries.
Google reports that this problem was discovered by a researcher who wished to remain anonymous. The company traditionally does not share any information and technical details about attacks on a fresh bug. Thus, Google aims to give users more time to install patches before other attackers learn the details of the bug and launch their own attacks.
This vulnerability is the sixth 0-day that has been patched in Chrome this year. Let me remind you that earlier in 2022, Google engineers fixed problems in the browser: CVE-2022-1096, CVE-2022-0609, CVE-2022-1364, CVE-2022-2294 and CVE-2022-2856.