{"id":317801,"date":"2022-08-17T11:00:32","date_gmt":"2022-08-17T13:00:32","guid":{"rendered":"https:\/\/teknomers.com\/fr\/la-nouvelle-vulnerabilite-zero-day-de-google-chrome-est-exploitee-a-letat-sauvage\/"},"modified":"2022-08-17T11:00:33","modified_gmt":"2022-08-17T13:00:33","slug":"la-nouvelle-vulnerabilite-zero-day-de-google-chrome-est-exploitee-a-letat-sauvage","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/la-nouvelle-vulnerabilite-zero-day-de-google-chrome-est-exploitee-a-letat-sauvage\/","title":{"rendered":"La nouvelle vuln\u00e9rabilit\u00e9 Zero-Day de Google Chrome est exploit\u00e9e \u00e0 l&#8217;\u00e9tat sauvage"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both\"><\/div>\n<p>Google a d\u00e9ploy\u00e9 mardi des correctifs pour le navigateur Chrome pour les ordinateurs de bureau afin de contenir une faille zero-day de haute gravit\u00e9 activement exploit\u00e9e dans la nature.<\/p>\n<p>Suivi comme <strong>CVE-2022-2856<\/strong>le probl\u00e8me a \u00e9t\u00e9 d\u00e9crit comme un cas de validation insuffisante d&#8217;entr\u00e9es non fiables dans <a rel=\"nofollow noopener\" href=\"https:\/\/www.chromium.org\/developers\/web-intents-in-chrome\/\" target=\"_blank\">Intentions<\/a>.  Les chercheurs en s\u00e9curit\u00e9 Ashley Shen et Christian Resell de Google Threat Analysis Group ont \u00e9t\u00e9 cr\u00e9dit\u00e9s d&#8217;avoir signal\u00e9 la faille le 19 juillet 2022.<\/p>\n<p>Comme c&#8217;est g\u00e9n\u00e9ralement le cas, le g\u00e9ant de la technologie s&#8217;est abstenu de partager des d\u00e9tails suppl\u00e9mentaires sur la lacune jusqu&#8217;\u00e0 ce que la majorit\u00e9 des utilisateurs soient mis \u00e0 jour.  &#8220;Google est conscient qu&#8217;un exploit pour CVE-2022-2856 existe dans la nature&#8221;, il <a rel=\"nofollow noopener\" href=\"https:\/\/chromereleases.googleblog.com\/2022\/08\/stable-channel-update-for-desktop_16.html\" target=\"_blank\">reconnu<\/a> dans une d\u00e9claration laconique.<\/p>\n<p>La derni\u00e8re mise \u00e0 jour a \u00e9galement corrig\u00e9 10 autres failles de s\u00e9curit\u00e9, dont la plupart sont li\u00e9es \u00e0 des bogues d&#8217;utilisation apr\u00e8s lib\u00e9ration dans divers composants tels que FedCM, SwiftShader, ANGLE et Blink, entre autres.  Une vuln\u00e9rabilit\u00e9 de d\u00e9bordement de tampon de tas dans les t\u00e9l\u00e9chargements a \u00e9galement \u00e9t\u00e9 corrig\u00e9e.<\/p>\n<div class=\"ad_two clear\"><a rel=\"nofollow noopener\" href=\"https:\/\/go.thn.li\/crowd-mid-d\" target=\"_blank\" title=\"CyberSecurity\"><img decoding=\"async\" alt=\"La cyber-s\u00e9curit\u00e9\" class=\"lazyload\" loading=\"lazy\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/08\/1660741232_673_La-nouvelle-vulnerabilite-Zero-Day-de-Google-Chrome-est-exploitee-a.png\" width=\"728\" height=\"90\" \/><\/a><\/div>\n<p>Le d\u00e9veloppement marque la cinqui\u00e8me vuln\u00e9rabilit\u00e9 zero-day dans Chrome que Google a r\u00e9solue depuis le d\u00e9but de l&#8217;ann\u00e9e &#8211;<\/p>\n<p>Il est recommand\u00e9 aux utilisateurs de mettre \u00e0 jour vers la version 104.0.5112.101 pour macOS et Linux et 104.0.5112.102\/101 pour Windows afin d&#8217;att\u00e9nuer les menaces potentielles.  Il est \u00e9galement conseill\u00e9 aux utilisateurs de navigateurs bas\u00e9s sur Chromium tels que Microsoft Edge, Brave, Opera et Vivaldi d&#8217;appliquer les correctifs au fur et \u00e0 mesure de leur disponibilit\u00e9.<\/p>\n<p><\/p>\n<\/div>\n<p><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2022\/08\/new-google-chrome-zero-day.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Google a d\u00e9ploy\u00e9 mardi des correctifs pour le navigateur Chrome pour les ordinateurs de bureau afin de contenir une faille zero-day de haute gravit\u00e9 activement exploit\u00e9e dans la nature. Suivi comme CVE-2022-2856le probl\u00e8me a \u00e9t\u00e9 d\u00e9crit comme un cas de validation insuffisante d&#8217;entr\u00e9es non fiables dans Intentions. Les chercheurs en s\u00e9curit\u00e9 Ashley Shen et Christian [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":317802,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[16757,4168,4158,4165,4161,40,36372,7755,4157,4159,4171,4170,251,4167,4160,197,4163,4162,5854,4172,4169,4166,3667,4164,35759],"class_list":["post-317801","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-chrome","tag-comment-pirater","tag-cyber-actualites","tag-cyber-attaques","tag-cyber-mises-a-jour","tag-est","tag-exploitee","tag-google","tag-lactualite-de-la-cybersecurite","tag-lactualite-de-la-cybersecurite-aujourdhui","tag-lactualite-des-hackers","tag-la-securite-des-informations","tag-letat","tag-logiciel-malveillant-de-ransomware","tag-mises-a-jour-de-la-cybersecurite","tag-nouvelle","tag-nouvelles-de-piratage","tag-nouvelles-de-pirates","tag-sauvage","tag-securite-informatique","tag-securite-internet","tag-violation-de-donnees","tag-vulnerabilite","tag-vulnerabilite-logicielle","tag-zeroday"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/317801","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=317801"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/317801\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/317802"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=317801"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=317801"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=317801"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}