What Is CVE-2022-3723?
Unfortunately, there are reports that an exploit for CVE-2022-3723 exists in the wild. Chrome’s Stable channel has been updated to version 107.0.5304.87 for Mac and Linux and version 107.0.5304.87/.88 for Windows.
“We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel,” Google said.
What Is a Type Confusion Vulnerability?
This type of vulnerability occurs when a program allocates or initializes a resource (a pointer, object, or variable) using one type but accesses the resource via a type incompatible with the original type.
Another example of such a vulnerability that affects Chrome and V8 is CVE-2022-1364 which was reported by Clément Lecigne of Google’s Threat Analysis Group earlier this year. The flaw was rated as high in severity.
To install any update immediately, you can jump to Google Chrome menu, select Help, then About Google Chrome, and apply the update. Also note that your browser will check automatically for new updates and install them the next time you relaunch the browser.