-->
UnlabelledTechnology - Google News

Wednesday, March 3, 2021

author photo

Technology - Google News

Google patches actively exploited Chrome browser zero-day vulnerability - ZDNet

Posted: 03 Mar 2021 02:44 AM PST

Google has warned of reports that a zero-day vulnerability in the Chrome browser is being actively exploited in the wild.

The vulnerability, tracked as CVE-2021-21166, was reported by Alison Huffman from the Microsoft Browser Vulnerability Research team on February 11 and is described as an "object lifecycle issue in audio." 

Google has labeled the vulnerability as a "high" severity security flaw and has fixed the issue in the latest Chrome release.  

Alongside CVE-2021-21166, Huffman also recently reported another high-severity bug, CVE-2021-21165, another object lifestyle issue in audio problem, and CVE-2021-21163, an insufficient data validation issue in Reader Mode. 

The tech giant has not revealed further details concerning how CVE-2021-21166 is being exploited, or by whom. 

Google's announcement, published on Tuesday, also marked the release of Chrome 89 to the stable desktop channel for Windows, Mac, and Linux machines, which is currently rolling out. Users should upgrade to Chrome 89.0.4389.72 once available. 

The Chrome 89.0.4389.72 release also contains a swathe of other security fixes and browser improvements. In total, 47 bugs have been patched, including a high-severity heap buffer overflow in TabStrip (CVE-2021-21159), another heap buffer overflow in WebAudio (CVE-2021-21160), and a use-after-free issue in WebRTC (CVE-2021-21162). A total of eight vulnerabilities are considered high-severity.

"Access to bug details and links may be kept restricted until a majority of users are updated with a fix," Google added. "We will also retain restrictions if the bug exists in a third-party library that other projects similarly depend on, but haven't yet fixed."

On February 4, Google pushed out a fix for CVE-2021-21148, a heap buffer overflow in the Chrome V8 JavaScript engine which is also being actively exploited. This high-severity security flaw was reported by Mattias Buelens on January 24. 

This week, Microsoft released urgent updates for four zero-day vulnerabilities in Exchange Server. Microsoft says the bugs are being exploited in "limited targeted attacks" and is urging users to update as quickly as possible. 

Previous and related coverage

Have a tip? Get in touch securely via WhatsApp | Signal at +447713 025 499, or over at Keybase: charlie0

Let's block ads! (Why?)

Niantic Showcases Pokémon GO Proof-Of-Concept HoloLens Demo At Microsoft Ignite 2021 - Nintendo Life

Posted: 02 Mar 2021 08:30 PM PST

Niantic founder John Hanke with Pikachu
Niantic founder John Hanke with Pikachu (Image: Niantic)

At Microsoft Ignite 2021, Niantic announced it would be collaborating with Microsoft and showed off a proof-of-concept Pokémon GO demo on a HoloLens 2 headset.

Niantic founder and CEO, John Hanke, appeared in a video illustrating how AR can enrich daily routines. Keep in mind, this demo is not intended for consumer use and is only used to offer an "early" glimpse into future evolutions of both software and hardware.

"For our part, we're committed to leveraging and expanding our platform to build real-world AR experiences for as many devices as possible and reaching a diverse set of players no matter their physical location. This includes building with others that share a common vision for how technology can facilitate deeper social connection and spark a sense of adventure in the real world."

"We've only scratched the surface. We know the years ahead to be filled with important achievements which will serve as waypoints in AR's journey to become a life-changing computing platform. We're thrilled to be leading the way."

So, what do you think? Are you looking forward to future AR experiences from Niantic? Leave a comment down below.

Let's block ads! (Why?)

Sony’s PlayStation 5 is in stock at Amazon [Update: Sold Out] - The Verge

Posted: 03 Mar 2021 07:11 AM PST

Update March 3rd, 2021 11:04AM ET: Amazon has sold out of both PS5 console models.

Sony's latest gaming console, the PS5, is one of many gaming gadgets that are hard to find in stock right now due to mostly online-only sales. If you are trying to get your hands on one, Amazon has restocked both the PS5 Digital Edition and the PS5 consoles right now, while supplies last.

Once you obtain your PS5, there are a few items you're going to want to pick up for your console. Some of the most popular PS5 exclusives right now include Demon's Souls Remake by Bluepoint Games. Additionally, Final Fantasy VII Remake was a popular game in 2020; it is backwards compatible and a PS5 port is coming on June 10th. If you buy the game now, you'll get a free next-gen upgrade when that version is available.

I strongly suggest buying a one-year membership to PlayStation Plus, as the perks of having a subscription are great for PS5 users. Most notably, it nets you access to the PlayStation Plus Collection, which is a digital library of some of the most popular first- and third-party titles released on the PS4 such as Bloodborne and The Last of Us Remastered. I also advise picking up an extra DualSense controller.

If you want to expand your SSD storage, sadly, there is no way to do that just yet. But Sony is reportedly expanding the options for more SSD storage sometime this summer.

Let's block ads! (Why?)
Next article Next Post
Previous article Previous Post

This post have 0 komentar


EmoticonEmoticon

Next article Next Post
Previous article Previous Post