{"id":1624,"date":"2024-10-16T12:56:32","date_gmt":"2024-10-16T10:56:32","guid":{"rendered":"https:\/\/techlance.ddns.net\/?p=1624"},"modified":"2024-10-16T12:58:02","modified_gmt":"2024-10-16T10:58:02","slug":"google-chrome-tyopoytaversion-paivitys","status":"publish","type":"post","link":"https:\/\/techlance.ddns.net\/en\/google-chrome-tyopoytaversion-paivitys\/","title":{"rendered":"Google Chrome: Ty\u00f6p\u00f6yt\u00e4version p\u00e4ivitys"},"content":{"rendered":"<p><strong>Luokitus:<\/strong> Kriittinen<br><strong>Ratkaisu:<\/strong> Virallinen korjaus saatavilla<br><strong>Hyv\u00e4ksik\u00e4yt\u00f6n kypsyysaste:<\/strong> Ei m\u00e4\u00e4ritelty<br><strong>CVSSv3.1-pistem\u00e4\u00e4r\u00e4:<\/strong> Ei m\u00e4\u00e4ritetty<br><strong>CVE-tunnisteet:<\/strong> CVE-2024-9602, CVE-2024-9603<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Yhteenveto<\/h2>\n\n\n\n<p>Google on julkaissut p\u00e4ivityksen Chrome-selaimen ty\u00f6p\u00f6yt\u00e4versioon, joka sis\u00e4lt\u00e4\u00e4 t\u00e4rkeit\u00e4 tietoturvakorjauksia. P\u00e4ivitys tuo mukanaan kolme tietoturvap\u00e4ivityst\u00e4, joista osa on ulkopuolisten tietoturvatutkijoiden l\u00f6yt\u00e4mien haavoittuvuuksien korjauksia. Kriittisiksi luokitellut haavoittuvuudet koskevat Chrome-selaimen V8 JavaScript-moottorin tyyppivirheit\u00e4 (Type Confusion), jotka voivat johtaa ohjelmiston v\u00e4\u00e4rink\u00e4ytt\u00f6\u00f6n.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">T\u00e4rkeimm\u00e4t korjaukset<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\">CVE-2024-9602: Type Confusion in V8<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Vaikeusaste:<\/strong> Korkea<\/li>\n\n\n\n<li><strong>Palkkio:<\/strong> 55 000 dollaria<\/li>\n\n\n\n<li><strong>Ilmoittaja:<\/strong> Seunghyun Lee (@0x10n)<\/li>\n\n\n\n<li><strong>Ilmoitusp\u00e4iv\u00e4:<\/strong> 20. syyskuuta 2024<\/li>\n<\/ul>\n\n\n\n<p>T\u00e4m\u00e4 haavoittuvuus liittyy tyyppivirheeseen (Type Confusion) Chrome-selaimen V8 JavaScript-moottorissa. Tyyppivirhe syntyy, kun ohjelma tulkitsee tietoa v\u00e4\u00e4rin tiettyyn tyyppiin, mik\u00e4 voi mahdollistaa hy\u00f6kk\u00e4\u00e4j\u00e4lle vahingollisen koodin suorittamisen kohdej\u00e4rjestelm\u00e4ss\u00e4.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">CVE-2024-9603: Type Confusion in V8<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Vaikeusaste:<\/strong> Korkea<\/li>\n\n\n\n<li><strong>Ilmoittajat:<\/strong> @WeShotTheMoon ja Nguyen Hoang Thach (Starlabs)<\/li>\n\n\n\n<li><strong>Ilmoitusp\u00e4iv\u00e4:<\/strong> 18. syyskuuta 2024<\/li>\n<\/ul>\n\n\n\n<p>Toinen tyyppivirheeseen liittyv\u00e4 haavoittuvuus V8-moottorissa, jonka l\u00f6ysiv\u00e4t Starlabsin tutkijat. T\u00e4m\u00e4 haavoittuvuus voi my\u00f6s johtaa hy\u00f6kk\u00e4\u00e4j\u00e4n mahdollisuuteen suorittaa mielivaltaista koodia.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Korjaukset ja suositukset<\/h2>\n\n\n\n<p>Google Chrome -selaimen k\u00e4ytt\u00e4ji\u00e4 kehotetaan p\u00e4ivitt\u00e4m\u00e4\u00e4n selaimensa mahdollisimman pian. P\u00e4ivitykset ja tietoturvakorjaukset on sis\u00e4llytetty Chrome-version vakaan kanavan p\u00e4ivitykseen, ja ne asennetaan automaattisesti selaimen p\u00e4ivityksen yhteydess\u00e4. Tarkat tiedot p\u00e4ivityksist\u00e4 l\u00f6ytyv\u00e4t Chromen tietoturvasivulta.<\/p>\n\n\n\n<p>P\u00e4ivitt\u00e4minen on erityisen t\u00e4rke\u00e4\u00e4, sill\u00e4 n\u00e4iden haavoittuvuuksien hyv\u00e4ksik\u00e4ytt\u00f6 voi mahdollistaa j\u00e4rjestelm\u00e4n hallinnan ottamisen tai muiden haitallisten toimien suorittamisen.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">P\u00e4\u00e4telm\u00e4<\/h2>\n\n\n\n<p>Google Chrome -selaimen vakaan kanavan p\u00e4ivitys sis\u00e4lt\u00e4\u00e4 t\u00e4rkeit\u00e4 korjauksia, jotka koskevat V8 JavaScript-moottorin tyyppivirheit\u00e4. Koska haavoittuvuuksien hyv\u00e4ksik\u00e4ytt\u00f6 voi johtaa j\u00e4rjestelm\u00e4n hallinnan menett\u00e4miseen, k\u00e4ytt\u00e4ji\u00e4 suositellaan p\u00e4ivitt\u00e4m\u00e4\u00e4n selaimensa v\u00e4litt\u00f6m\u00e4sti parhaan suojan varmistamiseksi.<\/p>\n\n\n\n<figure class=\"wp-block-embed is-type-wp-embed is-provider-techlance wp-block-embed-techlance\"><div class=\"wp-block-embed__wrapper\">\n<blockquote class=\"wp-embedded-content\" data-secret=\"lgJDUfgyWa\"><a href=\"https:\/\/techlance.ddns.net\/en\/\">Etusivu<\/a><\/blockquote><iframe class=\"wp-embedded-content\" sandbox=\"allow-scripts\" security=\"restricted\" style=\"position: absolute; visibility: hidden;\" title=\"&#8221;Etusivu&#8221; &#8212; Techlance\" src=\"https:\/\/techlance.ddns.net\/embed\/#?secret=zxkrDspNZs#?secret=lgJDUfgyWa\" data-secret=\"lgJDUfgyWa\" width=\"500\" height=\"282\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\"><\/iframe>\n<\/div><\/figure>","protected":false},"excerpt":{"rendered":"<p>Luokitus: KriittinenRatkaisu: Virallinen korjaus saatavillaHyv\u00e4ksik\u00e4yt\u00f6n kypsyysaste: Ei m\u00e4\u00e4riteltyCVSSv3.1-pistem\u00e4\u00e4r\u00e4: Ei m\u00e4\u00e4ritettyCVE-tunnisteet: CVE-2024-9602, CVE-2024-9603 Yhteenveto Google on julkaissut p\u00e4ivityksen Chrome-selaimen ty\u00f6p\u00f6yt\u00e4versioon, joka [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[21,9],"tags":[22,15],"class_list":["post-1624","post","type-post","status-publish","format-standard","hentry","category-data-protection","category-security","tag-data-protection","tag-tietoturva"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/techlance.ddns.net\/en\/wp-json\/wp\/v2\/posts\/1624","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/techlance.ddns.net\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/techlance.ddns.net\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/techlance.ddns.net\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/techlance.ddns.net\/en\/wp-json\/wp\/v2\/comments?post=1624"}],"version-history":[{"count":0,"href":"https:\/\/techlance.ddns.net\/en\/wp-json\/wp\/v2\/posts\/1624\/revisions"}],"wp:attachment":[{"href":"https:\/\/techlance.ddns.net\/en\/wp-json\/wp\/v2\/media?parent=1624"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/techlance.ddns.net\/en\/wp-json\/wp\/v2\/categories?post=1624"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/techlance.ddns.net\/en\/wp-json\/wp\/v2\/tags?post=1624"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}