Google Chrome is a widely used web browser that allows users to access the internet. This vulnerability affects the V8 JavaScript engine, which is responsible for executing JavaScript code on the client-side. An attacker can exploit this vulnerability by crafting a malicious HTML page that causes an out-of-bounds read and write in the V8 engine, potentially leading to heap corruption.
You're affected if you use Google Chrome prior to version 143.0.7499.147. You can check your version using the following command: google-chrome --version or chrome --version. Note that this vulnerability is specific to the V8 engine in Chrome, and not related to other browsers like Firefox or Edge.
To fix this vulnerability, you need to update to Google Chrome 143.0.7499.147 or later. You can download the latest version from the official Chrome website: https://www.google.com/chrome/. Alternatively, if an immediate upgrade isn't possible, you can apply the following mitigations:
--disable-site-features=Extensions flag when launching Chrome to disable extensions.