Reported by Huang Xilin of Ant Group Light-Year Security Lab on High CVE-2024-0224: Use after free in WebAudio.
Reported by Toan (suto) Pham and Tri Dang of Qrious Secure on High CVE-2024-0223: Heap buffer overflow in ANGLE. Reported by Toan (suto) Pham of Qrious Secure on High CVE-2024-0222: Use after free in ANGLE. Please see the Chrome Security Page for more information. Below, we highlight fixes that were contributed by external researchers. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed. Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix.
The Extended Stable channel has been updated to 1.199 for Mac and 1.200 for Windows which will roll out over the coming days/weeks.
A full list of changes in this build is available in the Log. The Stable channel has been updated to 1.199 for Mac,Linux and 1.199/200 to Windows which will roll out over the coming days/weeks.