Google released an update to its Chrome browser that patches a zero-day vulnerability in the software s FreeType font rendering library that was actively being exploited in the wild. Security researcher Sergei Glazunov of Google Project Zero discovered the bug which is classified as a type of memory-corruption flaw called a heap buffer overflow in FreeType. By Tuesday, Google had released a stable channel update, Chrome version 86.0.4240.111, that deploys five security fixes for Windows, Mac & Linux.
Source: https://threatpost.com/google-patches-zero-day-browser/160393/