Chrome 98 Audit

Find Outdated Chrome Installations

Google released Chrome 98. In this release, Google fixed 37 security issues and added additional features. The new features include:

  • New window.open() popup vs. window behavior
  • CSS Color Adjust: 'only' keyword for color-scheme
  • HDR CSS Media Queries: dynamic-range
  • Add support for Promise to Blobs in clipboard item
  • COLRv1 Color Gradient Vector Fonts
  • self.structuredClone()
  • WritableStream controller AbortSignal
  • Private Network Access preflight requests for subresources
  • FileSystemHandle::Remove() method
  • Remove SDES key exchange for WebRTC

Details on all of these features can be found on the Chrome Status page. As always, Google takes its time with putting our a larger blog post covering the most important changes however, you can find a very brief summary on the Chrome release page.

Regarding security, Google fixed the following vulnerabilities disclosed by external researchers:

  • High CVE-2022-0452: Use after free in Safe Browsing.
  • High CVE-2022-0453: Use after free in Reader Mode
  • High CVE-2022-0454: Heap buffer overflow in ANGLE.
  • High CVE-2022-0455: Inappropriate implementation in Full Screen Mode.
  • High CVE-2022-0456: Use after free in Web Search.
  • High CVE-2022-0457: Type Confusion in V8.
  • High CVE-2022-0458: Use after free in Thumbnail Tab Strip.
  • High CVE-2022-0459: Use after free in Screen Capture.
  • Medium CVE-2022-0460: Use after free in Window Dialog.
  • Medium CVE-2022-0461: Policy bypass in COOP.
  • Medium CVE-2022-0462: Inappropriate implementation in Scroll.
  • Medium CVE-2022-0463: Use after free in Accessibility.
  • Medium CVE-2022-0464: Use after free in Accessibility.
  • Medium CVE-2022-0465: Use after free in Extensions.
  • Medium CVE-2022-0466: Inappropriate implementation in Extensions Platform.
  • Medium CVE-2022-0467: Inappropriate implementation in Pointer Lock.
  • Medium CVE-2022-0468: Use after free in Payments.
  • Medium CVE-2022-0469: Use after free in Cast.
  • Low CVE-2022-0470: Out of bounds memory access in V8.

With the report below, you can easily find which computers in your network do not have this latest Chrome version installed. Simply run the report to get a complete overview of your environment.

 

Run our Chrome 98 Query

Select Top 1000000 tblAssets.AssetID,
tblAssets.AssetName,
tblAssets.Domain,
tsysAssetTypes.AssetTypename As AssetType,
tblAssets.Username,
tblAssets.Userdomain,
tsysAssetTypes.AssetTypeIcon10 As icon,
tblAssets.IPAddress,
tblSoftwareUni.softwareName As Software,
tblSoftware.softwareVersion As Version,
tblSoftwareUni.SoftwarePublisher As Publisher,
Case
When Cast(SubString(tblSoftware.softwareVersion, 0, 3) As INT) > 98 Then
'Up to date'
When Cast(SubString(tblSoftware.softwareVersion, 0, 3) As INT) = 98 And
Cast(SubString(tblSoftware.softwareVersion, 6, 4) As INT) > 4758
Then 'Up to date'
When Cast(SubString(tblSoftware.softwareVersion, 0, 3) As INT) = 98 And
Cast(SubString(tblSoftware.softwareVersion, 6, 4) As INT) = 4758
And Cast(SubString(tblSoftware.softwareVersion, 11, 4) As INT) >= 80 Then
'Up to date'
Else 'Out of date'
End As [Patch Status],
tsysIPLocations.IPLocation,
tblAssetCustom.Manufacturer,
tblAssetCustom.Model,
tsysOS.OSname As OS,
tblAssets.SP,
tblAssets.Lastseen,
tblAssets.Lasttried,
tblSoftware.Lastchanged,
Case
When Cast(SubString(tblSoftware.softwareVersion, 0, 3) As INT) > 98 Then
'#d4f4be'
When Cast(SubString(tblSoftware.softwareVersion, 0, 3) As INT) = 98 And
Cast(SubString(tblSoftware.softwareVersion, 6, 4) As INT) > 4758
Then '#d4f4be'
When Cast(SubString(tblSoftware.softwareVersion, 0, 3) As INT) = 98 And
Cast(SubString(tblSoftware.softwareVersion, 6, 4) As INT) = 4758
And Cast(SubString(tblSoftware.softwareVersion, 11, 4) As INT) >= 80 Then
'#d4f4be'
Else '#ffadad'
End As backgroundcolor
From tblAssets
Inner Join tblAssetCustom On tblAssets.AssetID = tblAssetCustom.AssetID
Inner Join tsysAssetTypes On tsysAssetTypes.AssetType = tblAssets.Assettype
Inner Join tsysIPLocations On tsysIPLocations.LocationID =
tblAssets.LocationID
Inner Join tblState On tblState.State = tblAssetCustom.State
Inner Join tblSoftware On tblAssets.AssetID = tblSoftware.AssetID
Inner Join tblSoftwareUni On tblSoftwareUni.SoftID = tblSoftware.softID
Left Join tsysOS On tsysOS.OScode = tblAssets.OScode
Where tblSoftwareUni.softwareName Like '%Google Chrome%' And
tblSoftwareUni.SoftwarePublisher Like '%Google%' And tblState.Statename =
'Active'

Audit and Take Action in 3 Easy Steps

1. Download & Install Lansweeper

3. Run the Audit & Take Action

Download Lansweeper to Run this Audit

Harness the Power of Reporting