ETA of Fixlet for CVE-2022-1096(High-Severity Zero-Day Exploit)

fermt 2022-03-28 13:05:18 UTC #1

This CVE came over the weekend. When could we expect BigFix Fixlets released for Chrome and Edge Browsers to mitigate this High-Severity Zero-Day Exploit?

ADL 2022-03-28 13:59:12 UTC #2

The fixlets have been prepared and will be published in the next few hours.

JasonWalker 2022-03-28 14:46:41 UTC #3

If you are inclined to try some not-officially-supported content, I have posted a fixlet to https://bigfix.me/fixlet/details/26918 that upgrades Chrome to the latest available version for Windows.

Important notes

This Fixlet does not check the Chrome version and will remain Relevant on any computers that have Chrome, even if the computer is already at the latest version.
The Fixlet does not verify hash values of the downloaded Chrome installer; this allows the Fixlet to work after Google updates their Chrome installer.
The latest Chrome version is download as of the time the Action is issued. The download is cached on the Root Server, Relays, and Clients, and the Action will continue to install that static version of Chrome - even if Google updates the download binaries after the Action is issued.

Can we download a file as in parameter

JasonWalker 2022-03-28 14:59:28 UTC #4

The official content was published a short while ago

rgangemi 2022-03-28 15:00:33 UTC #5

Fixlets available for Windows and Mac:

D.Dean 2022-03-28 16:48:53 UTC #6

Has anyone else seen issues with this fixlet not being applicable to anything? We have 25,000+ machines with about 14,000 with chrome and none are showing applicable at this time. The fixlet has been in the console for a few hours now.

I will run the relevance to see if there is an issue but I was curious if anyone else was having this issue?

D.Dean 2022-03-28 17:03:29 UTC #7

I created a copy of the fixlet and it became applicable to over 10k systems in a matter of 15 min.

Very odd.

jeremylam 2022-03-28 18:59:57 UTC #8

You might want to check if the Patches for Windows/Mac Application site is gathering correctly on your deployment (site versions), and if all those devices are subscribed to it.

D.Dean 2022-03-28 23:37:12 UTC #9

Thanks for the suggestions. I figure it out a while ago, the “computer subscriptions” was set to “no computers”. Have no idea who it got that way, my team is told to never touch settings related to external sites, that is left up to me and one other architect. It hadn’t be long though, there were still 3000 plus machines still applicable because they had not checked in to unsubscribe.