India, Dec. 12 -- Google has rolled out an emergency update for its Chrome browser after discovering that a serious security flaw is already being used in real attacks. The company is keeping details quiet for now. The bug is listed internally as 466192044, and Google is holding back technical information until more users have a chance to update safely.

Google has not shared the exact nature of the flaw, but a related GitHub commit hints at a possible issue inside ANGLE, the graphics layer that helps Chrome render webpages. The commit mentions that the Metal renderer was using the wrong value when calculating buffer sizes.

That hint suggests there might be a memory corruption problem, something attackers sometimes use to take control of...