Whether you use Chrome, Firefox, or both, it's time to update your browser. Admittedly, these constant updates can be tedious.
But sometimes they are really necessary or can at least provide you with useful new features.
What's new in the latest editions of these two browsers?
What's new in Chrome
Released last Tuesday for Windows, MacOS and Linux, Chrome version 130.0.6723.91/.92 includes fixes for two security vulnerabilities. One of them is considered critical, while the other is rated high.
“Out of bounds write in Dawn”
The critical bug called CVE-2024-10487 is described as “Out of bounds write in Dawn”. This means that a remote attacker could have performed an out-of-bounds memory access via a crafted HTML page.
What exactly does this mean? Dawn is an open-source implementation that Chrome adopts for WebGPU, an API that allows web pages to use your PC's graphics processing unit. With this unpatched vulnerability, an attacker could exploit a web page to execute malicious code.
Ironically, the bug was discovered by researchers in Apple's Security Engineering and Architecture department, who brought it to Google's attention. Yes, the rivalry between Apple and Google ensures this mutual surveillance. For our greater good.
“Use after free in WebRTC”
The high-rated bug, designated CVE-2024-10488, is described as a “Use after free in WebRTC”.
It allows a remote attacker to exploit corruption via a HTML page designed for this purpose. WebRTC is an open-source project that allows browsers and mobile applications to share audio, video, and data through APIs without the need for third-party plugins.
With this bug, a hacker could have exploited free memory to launch an attack.
How to update Chrome
To update Chrome on your computer, click the three-dot icon at the top right, go to Help and select About Google Chrome. The browser downloads and installs the latest update, then prompts you to restart it.
What's new in Firefox
Also released last Tuesday, Firefox version 132 fixes 11 security vulnerabilities. Two of them are rated high, six are moderate and three are low.
One of the vulnerabilities rated high is CVE-2024-10459, which would have allowed an attacker to block a program and then execute malicious code. The other vulnerability rated high and referred to as CVE-2024-10458 could have allowed an attacker to transfer sensitive permissions from a trusted site to an untrusted site.
Beyond security fixes, the latest version of Firefox is not limited to that.
New features for streaming under Firefox
On the eve of the 20th anniversary of its browser, which was launched on November 9, 2004 (two years after version… 0.1), Mozilla added some extras to the new edition.
With Microsoft's PlayReady encrypted media playback now rolling out to the web, Firefox is launching 1080p playback as the default and 4K Ultra HD support for major streaming services. According to Mozilla, the advantage is that there is less battery drain and better performance when streaming movies and TV shows.
How to update Firefox
Click the three-line icon, select Help, then click About Firefox.
The latest version will be installed, after which you will be prompted to restart the browser.
New for Enhanced Tracking Protection
Third-party cookies remain a persistent and annoying problem on the web. Firefox now automatically blocks these cookies when Enhanced Tracking Protection strict mode is enabled.
With three different levels, Enhanced Tracking Protection aims to protect you against social media trackers, cross-site cookies, cryptocurrency miners, fingerprinting and other threats.
To check or change your level, click the three-line icon at the top right, select Settings, then go to Privacy & Security. You can choose between Standard, Strict and Custom tiers.
