Prisma Access Browser（取代Talon Browser）纳入最新上游Chromium安全修复，涵盖多个CVE漏洞，此更新在1.0及后续版本中修复了这些问题。

🎈Prisma Access Browser已取代Talon Browser，此次更新纳入了众多上游Chromium安全修复，这些修复内容在多个相关链接中有详细列出。

💻文中提到了多个CVE漏洞，如CVE-2024-6772至CVE-2024-7550，涉及V8、Screen Capture、Media Stream等多个方面的问题。

🔧Prisma Access Browser 1.0及以后的版本中，这些CVEs得到了修复，解决了安全隐患。

Palo Alto Networks Security Advisories /PAN-SA-2024-0007PAN-SA-2024-0007 Prisma Access Browser: Monthly Vulnerability UpdatesInformationalJSON Published2024-08-14 Updated2024-08-14ReferenceDiscoveredexternallyDescriptionPrisma Access Browser (supersedes Talon Browser) has incorporated the latest upstream Chromium security fixes listed here:- https://chromereleases.googleblog.com/2024/07/stable-channel-update-for-desktop.html- https://chromereleases.googleblog.com/2024/07/stable-channel-update-for-desktop_23.html- https://chromereleases.googleblog.com/2024/07/stable-channel-update-for-desktop_30.html- https://chromereleases.googleblog.com/2024/08/stable-channel-update-for-desktop.htmlCVESummaryCVE-2024-6772Chromium: Inappropriate implementation in V8.CVE-2024-6773Chromium: Type Confusion in V8.CVE-2024-6774Chromium: Use after free in Screen Capture.CVE-2024-6775Chromium: Use after free in Media Stream.CVE-2024-6776Chromium: Use after free in Audio.CVE-2024-6777Chromium: Use after free in Navigation.CVE-2024-6778Chromium: Race in DevTools.CVE-2024-6779Chromium: Out of bounds memory access in V8.CVE-2024-6988Chromium: Use after free in Downloads.CVE-2024-6989Chromium: Use after free in Loader.CVE-2024-6990Chromium: Uninitialized Use in Dawn.CVE-2024-6991Chromium: Use after free in Dawn.CVE-2024-6994Chromium: Heap buffer overflow in Layout.CVE-2024-6995Chromium: Inappropriate implementation in Fullscreen.CVE-2024-6996Chromium: Race in Frames.CVE-2024-6997Chromium: Use after free in Tabs.CVE-2024-6998Chromium: Use after free in User Education.CVE-2024-6999Chromium: Inappropriate implementation in FedCM.CVE-2024-7000Chromium: Use after free in CSS.CVE-2024-7001Chromium: Inappropriate implementation in HTML.CVE-2024-7003Chromium: Inappropriate implementation in FedCM.CVE-2024-7004Chromium: Insufficient validation of untrusted input in Safe Browsing.CVE-2024-7005Chromium: Insufficient validation of untrusted input in Safe Browsing.CVE-2024-7255Chromium: Out of bounds read in WebTransport.CVE-2024-7256Chromium: Insufficient data validation in Dawn.CVE-2024-7532Chromium: Out of bounds memory access in ANGLE.CVE-2024-7533Chromium: Use after free in Sharing.CVE-2024-7534Chromium: Heap buffer overflow in Layout.CVE-2024-7535Chromium: Inappropriate implementation in V8.CVE-2024-7536Chromium: Use after free in WebAudio.CVE-2024-7550Chromium: Type Confusion in V8.Product StatusVersionsAffectedUnaffectedPrisma Access Browser < 1.0>= 1.0SolutionThese CVEs are fixed in Prisma Access Browser 1.0 (supersedes Talon Browser), and all later Prisma Access Browser versions.Timeline2024-08-14Initial publication