LTS-96 has been updated in the LTS channel to 96.0.4664.209 (Platform Version: 14268.84.0) for most ChromeOS devices. Want to know more about Long-term Support? Click here.
This update contains multiple Security fixes, including:
1316946 High CVE-2022-1638 [v8] Integer overflow leading to OOB/CHECK in icu_71::FormattedStringBuilder::prepareForInsertHelper
1316990 High CVE-2022-1633 Security: Heap-use-after-free in ash::sharesheet::SharesheetBubbleView::CloseWidgetWithReason
1322744 High CVE-2022-1859 Security: UAF in DiscardsGraphDumpImpl
1297283 High CVE-2022-1636 Security: use after free in JS self-profiling API
1278608 High CVE-2021-43527 Security: CA certificate import exploitable with large DSA and RSA-PSS signatures on Linux/ChromeOS
1304660 High CVE-2022-23308 CrOS: Vulnerability reported in dev-libs/libxml2
1278608 High CVE-2021-43527 Security: CA certificate import exploitable with large DSA and RSA-PSS signatures on Linux/ChromeOS
1304660 High CVE-2022-23308 CrOS: Vulnerability reported in dev-libs/libxml2
1278608 High CVE-2021-43527 Security: CA certificate import exploitable with large DSA and RSA-PSS signatures on Linux/ChromeOS
1315563 Medium CVE-2022-1867 Security: navigator.clipboard.read() can lead to mutation XSS
1300561 Medium CVE-2022-1489 Security: container-overflow in ash::ScrollableShelfView::ShouldCountActivatedInkDrop
Giuliana Pritchard
Google Chrome OS