CVE-2021-30592
📋 TL;DR
This vulnerability allows an attacker to perform out-of-bounds memory writes in Google Chrome's Tab Groups feature. Attackers can exploit this by convincing users to install a malicious extension and visit a crafted HTML page. All Chrome users prior to version 92.0.4515.131 are affected.
💻 Affected Systems
- Google Chrome
- Chromium-based browsers
📦 What is this software?
Chrome by Google
Google Chrome is the world's most popular web browser, used by over 3 billion users globally across Windows, macOS, Linux, Android, and iOS platforms. As a Chromium-based browser developed by Google, Chrome dominates the browser market with approximately 65% market share, making it a critical compon...
Learn more about Chrome →Fedora by Fedoraproject
Fedora by Fedoraproject
Fedora by Fedoraproject
⚠️ Risk & Real-World Impact
Worst Case
Full system compromise through arbitrary code execution, potentially leading to data theft, ransomware deployment, or complete system control.
Likely Case
Browser compromise allowing session hijacking, credential theft, and installation of additional malware through the browser context.
If Mitigated
No impact if Chrome is updated to patched version or if malicious extensions are prevented from installation.
🎯 Exploit Status
Exploitation requires social engineering to install malicious extension and visit crafted page. No public exploit code available.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: 92.0.4515.131
Vendor Advisory: https://chromereleases.googleblog.com/2021/08/the-stable-channel-has-been-updated-to.html
Restart Required: Yes
Instructions:
1. Open Chrome menu > Help > About Google Chrome. 2. Chrome will automatically check for updates. 3. If update available, click 'Relaunch' to apply. 4. Verify version is 92.0.4515.131 or later.
🔧 Temporary Workarounds
Disable Tab Groups
allDisable the Tab Groups feature to prevent exploitation of this specific vulnerability
chrome://flags/#tab-groups
Set to 'Disabled'
Restrict Extension Installation
allConfigure Chrome to only allow extensions from Chrome Web Store or block all extensions
chrome://settings/extensions
Enable 'Allow extensions from other stores' or disable all extensions
🧯 If You Can't Patch
- Implement application whitelisting to prevent malicious extension installation
- Use browser isolation technology to contain potential exploitation
🔍 How to Verify
Check if Vulnerable:
Check Chrome version via chrome://settings/help or 'About Google Chrome' in menuCheck Version:
google-chrome --version (Linux) or check via chrome://versionVerify Fix Applied:
Confirm Chrome version is 92.0.4515.131 or later📡 Detection & Monitoring
Log Indicators:
- Chrome crash reports with memory corruption signatures
- Unexpected extension installation events
- Tab Groups related errors in Chrome logs
Network Indicators:
- Connections to known malicious domains hosting crafted HTML pages
- Downloads of suspicious Chrome extensions
SIEM Query:
source="chrome" AND (event="crash" OR event="extension_install") AND version<"92.0.4515.131"🔗 References
- https://chromereleases.googleblog.com/2021/08/the-stable-channel-has-been-updated-to.html
- https://crbug.com/1209469
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LVY4WIWTVVYKQMROJJS365TZBKEARCF/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IPJPUSAWIJMQFBQQQYXAICLI4EKFQOH6/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QW4R2K5HVJ4R6XDZYOJCCFPIN2XHNS3L/
- https://chromereleases.googleblog.com/2021/08/the-stable-channel-has-been-updated-to.html
- https://crbug.com/1209469
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LVY4WIWTVVYKQMROJJS365TZBKEARCF/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IPJPUSAWIJMQFBQQQYXAICLI4EKFQOH6/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QW4R2K5HVJ4R6XDZYOJCCFPIN2XHNS3L/
