Google warns billions of users to update Chrome browser to fix two high-severity vulnerabilities. One of which attackers are actively exploiting in the wild to hijack computers. Both issues are use-after-free vulnerabilities, one affecting Chrome’s audio component while the other resides in the PDFium library. Both flaws could enable remote attackers to gain privileges on the Chrome web browser just by convincing targeted users into visiting a malicious website, allowing them to escape sandbox protections and run arbitrary malicious code on the targeted systems.
Source: https://thehackernews.com/2019/11/chrome-zero-day-update.html