Google Chrome seems to be having a rough week, as the popular browser faces its second zero-day vulnerability patch in just five days. The previous patch addressed an issue in Chrome’s JavaScript engine, while the current bug is found in the Skia graphics library. Chrome users on Windows and Mac can download and apply the update immediately, while Linux and other platforms should see the update in the coming days.

Don’t ignore the update: Protect your browser

It’s crucial not to delay this update, as the vulnerability is being actively exploited “in the wild,” according to Google’s post on the Chrome Releases page (via Bleeping Computer). In contrast to the other security bugs fixed in this update, which were reported by members of the Vulnerability Research Institute and resulted in $20,000 of total bug bounties, this critical flaw was discovered by Clément Lecigne of Google’s Threat Analysis Group.

Remarkably, it’s been only one week since the CVE-2023-2136 bug was identified, showcasing an impressive turnaround for a company that’s larger in dollar terms than several countries. Details on how the bug is being exploited are not available presumably, Google doesn’t want to encourage others to take advantage of the vulnerability they’ve observed happening in the wild.

Zero-Day vulnerability strikes again

Just days after Google Chrome’s last emergency patch, another zero-day vulnerability has surfaced, putting users at risk once again. This alarming trend of security threats underscores the need for users to stay vigilant and promptly apply necessary updates.

The latest vulnerability stems from Chrome’s Skia graphics library, affecting both Windows and Mac users. Linux and other platform users can expect an update in the coming days. It’s crucial not to postpone applying the update, as this zero-day exploit is already being actively targeted in the wild.

Discovered by Clément Lecigne from Google’s Threat Analysis Group, the critical flaw is currently being addressed by the company. The swift response in tackling the CVE-2023-2136 bug demonstrates Google’s commitment to user security. However, specific details on how the bug is being exploited remain undisclosed to prevent further exploitation.

As zero-day vulnerabilities continue to emerge, Chrome users must remain cautious and ensure their browsers are up to date to maintain a secure browsing experience.