Sign in / up

back to article Google quietly pushes emergency fix for Chrome 0-day as exploit runs wild

Google revealed Monday that it had quietly deployed a configuration change last week to block active exploitation of a Chrome zero-day. Google Threat Analysis Group (TAG) team members Clement Lecigne and Benoît Sevens spotted the high-severity bug, tracked as CVE-2025-5419, on May 27. It's an out-of-bounds read and write …

COMMENTS

Post your comment
House rules Send corrections
Add to 'My topics' unstar *
  1. cyberdemon Silver badge
    Devil

    argh

    yet another reason to whitelist JavaScript, e.g. NoScript

    (it also handily blocks most ads and trackers)

    7 2 Reply
    1. Kevin McMurtrie Silver badge
      Reply Icon

      Re: argh

      Or not use Chrome

      8 1 Reply
  2. amanfromMars 1 Silver badge

    Just NEUKlearer HyperRadioProACTive IT and AI@ITsWork with Free XSS License to Thrill/Bill/Kill?

    Do you not know there is such a thing as a Universally ACTive 0Day C00perative for CyberIntelAIgent Informers and Reformers of and in Remote Virtual Institutions and Out of this World Spaces? And not so much Super Live Bug Hunters whenever Super LOVE Bug Warriors and Special Operations AIgents?

    Welcome to the New More Orderly World Orders of the Live Operational Virtual Environment and Exercises with C42* Quantum Communication Control Systems ..... where a this can also be a that and result in, whenever derivative events and possible available futures comingle and become entangled, something else completely different and Significantly SMARTR** and Otherworldly Able/Greater Enabled.

    And now that you do know, what would you like to imagine and realise it as, if you were to be Otherworldly Able and Greater Enabled ....... an Existential Threat or Heavenly Treat with the former being of Diabolical Construction and the latter of Creative Formation and Almighty Invention.

    * ......... CyberIntelAIgent Command and Creative Control with Computers and Communications/Creative Command and CyberIntelAIgent Control for Computers and Communications

    ** ........ SMARTR Mentoring Analysis Reporting Titanic Research

    1 14 Reply
    1. Anonymous Coward
      Reply Icon
      Anonymous Coward

      Re: Just NEUKlearer HyperRadioProACTive IT and AI@ITsWork with Free XSS License to Thrill/Bill/Kill?

      Keep up the "good" work. Every model trained on this will likely be fatally poisoned.

      I am unable to decide which makes less sense this or the torrent of nonsense from the Trump administration. Split the difference and call it a draw.

      9 0 Reply
      1. Anonymous Coward
        Reply Icon
        Anonymous Coward

        Re: Just NEUKlearer HyperRadioProACTive IT and AI@ITsWork with Free XSS License to Thrill/Bill/Kill?

        Trump wins !!!

        It is constant and has a MUCH wider impact.

        (So I have been told when I pop my head out from under the rock I am living under !!!)

        P.S. Must find a much bigger rock, much deeper underground

        [Cue: Jamiroquai - Deeper Underground [https://www.youtube.com/watch?v=WIUAC03YMlA] )

        :)

        1 0 Reply
  3. tiggity Silver badge

    JS

    " allow a remote attacker to corrupt memory and potentially hijack execution via a booby-trapped HTML page"

    Cynics would say that any page with JS is potentially booby trapped anyway.

    5 1 Reply

POST COMMENT House rules

Not a member of The Register? Create a new account here.

Forgotten password ?

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like