AI uncovered 21 zero‑days in FFmpeg; Chrome 149 shipped 429 patches

Colleagues, heads‑up for security teams: depthfirst found 21 zero‑day PoCs in FFmpeg, and Google released Chrome 149 with 429 patches.
- depthfirst confirmed 21 zero‑days with PoCs; the run cost ≈ $1,000; some bugs persisted for decades.
- Chrome 149 fixes 429 vulnerabilities; >100 are critical/high. Google tweaked its bug bounty amid a surge of AI reports.
- Recommendations: update FFmpeg (including embedded copies) and Chrome to 149.0.7827.53/54; prioritise streaming input protection (RTSP/AV1).
Why it matters: AI speeds vulnerability discovery — compress patch cycles and automate deployments.
How do you prioritise and handle auto‑updates?
#cybersecurity #vulnerabilities #patchmanagement #AI


Latest comments
No comments yet.