Microsoft releases emergency security update for Edge
A day after Google released an emergency update for its Chrome web browser, Microsoft fixed the security issue in its Microsoft Edge web browser.
Google released an emergency security update to patch a 0-day security issue in the browser. The issue, rated with a severity of high, was reported to the company on March 23, 2022. Google noted that it is aware of attacks targeting the vulnerability in Chrome. The company did not provide specifics, e.g., on the scope of the attacks or its targets.
Microsoft published a security update for its Edge web browser that patches the issue. Edge supports automatic updates but these do not get installed in real-time on devices. Edge users may want to check for updates manually to install the security update as early as possible.
- Open the Microsoft Edge web browser.
- Select Menu > Help and Feedback > About Microsoft Edge, or load edge://settings/help directly in the address bar.
The installed version is displayed on the page that opens, and Edge will run a check for updates. The check should find the new version that brings Edge's version to 99.0.1150.55. The update is downloaded and installed automatically at this point, and a restart is required to complete the process. The update is available for all desktop operating systems that Edge supports.
Microsoft lists the issue under CVE 2022 1096 on its security vulnerabilities tracker website, but does not provide additional information on the issue.
This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
Google is aware that an exploit for CVE-2022-1096 exists in the wild.
The Microsoft Edge web browser is based on Chromium, the same core that Google's Chrome web browser is based on. Most security issues that affect Google Chrome do affect other Chromium-based browsers as well, including Microsoft Edge, Vivaldi, Brave or Opera.
Brave released an “Upgraded Chromium to 99.0.4844.88” on March 26, 2012, with a patch (emergency update: Stable version 99.0.4844.84) for a vulnerability in the Chromium browser (zero-day attack that has been confirmed to be exploitable).
Upgrade from Chromium 99.0.4844.83 to Chromium 99.0.4844.88. · Issue #21889 · brave/brave-browser · GitHub
Of the major Chromium vendors,
Vivaldi and Opera have not released updated versions for this vulnerability (CVE-2022-1096) at this time, and not even a mention of it.
Vivaldi has also released an update:
Opera has not released a patched version of the fix at this time (GMT: 08:30, March 28),
Changelog for 85 – Opera Desktop
And nor has it been mentioned,
Opera 85 – Blog | Opera Desktop
16 hours ago
> Chrome released an emergency version 99.0.4844.84 because a serious bug, it’s available on Edge too, are you planing to do so?
For what it’s worth, Vivaldi released an emergency update as well.
The Ungoogled Chromium versions from Marmaduke are updated as well.
And that’s not an early April first foolsday joke! :-)
I recently uninstalled Vivaldi for being disruptive. Then as I was searching for something else, I found a “vivaldi_report” file in the usr directory. There was just one, but since it was in my personal directory, there would be one for other users if present. There was a linked file in the appdata directory. The uninstaller did not find these files. I deleted them and won’t use Vivaldi again.
Sorry if this is off-topic; perhaps it is common knowledge, but new to me. They say on their website that they don’t care what you do, but I think that they do.
found .vivaldi_reporting_data file. opening it with notepad , says “This file contains data used for counting users.
If you are worried about privacy implications, please see https://help.vivaldi.com/article/how-we-count-our-users/“
No update for Bromite yet…
Bromite isn’t developed by a team, so chances are it will lag behind. If you can, use Brave as a chromium browser. And no I’m not a Brave fan, infact Firefox user.
Bromite will update soon:
I installed that update yesterday.
You can sign up to get the security notices yourself at
> I recently uninstalled Vivaldi for being disruptive.
The shit is PROPRIETARY. GOOD. The sooner more people refuse to use closed source / black box software the better. You can either make excuses for your daily enema, or face reality and man up.
No update for Firefox yet.
Why should there be a Firefox update ?
This is Chrome bug nothing to do with Firefox.