ChromeOS Archives - Cyber Security Minute

Google Extends Chromebook Lifespan, Promises 10 Years of Automatic Updates

Issued by: SecurityWeek

Portable computers running Google’s ChromeOS, Chromebooks have been in users’ hands since 2012, and have become one of the most used types of devices within the education sector. To prolong their lives and ensure they remain secure to use, Google said it plans to extend the automatic security updates period for some of these devices,…

Vulnerabilities

Microsoft Shares Details on Critical ChromeOS Vulnerability

Issued by: Security Week

Tracked as CVE-2022-2587 (CVSS score of 9.8) and described as an out-of-bounds write, the vulnerability was addressed with the release of a patch in June. The issue was identified in the CRAS (ChromiumOS Audio Server) component, and could be triggered using malformed metadata associated with songs. CRAS resides between the operating system and ALSA (Advanced…