Google notes that both vulnerabilities were reported by anonymous sources. However, it is unclear whether the two issues were exploited together or separately.
Chrome users are advised to look for the latest update by going to Help > About Google Chrome after clicking on the three dots button from the top-right corner of the browser window. The update is being rolled out in stages and may take some time to reach all users.
In October, Google fixed the zero-day vulnerability CVE-2020-15999 by releasing version 86.0.4240.111. That was related to an issue in the FreeType font engine that was reported by a researcher in Google’s Project Zero team. The Chrome browser received the second zero-day fix last week through version 86.0.4240.183. That vulnerability was identified as CVE-2020-16009 and was related to a bug in the V8 engine.
Google last week also released the Chrome for Android version 86.0.4240.185 to fix another zero-day flaw that was identified by the Project Zero team as CVE-2020-16010 and existed in the user interface component of the browser.
Is Mi Notebook 14 series the best affordable laptop range for India? We discussed this on Orbital, our weekly technology podcast, which you can subscribe to via Apple Podcasts or RSS, download the episode, or just hit the play button below.