Thursday, May 1, 2025
HomeChromeChrome Security Update, Patch For Multiple Vulnerabilities

Chrome Security Update, Patch For Multiple Vulnerabilities

Published on

SIEM as a Service

Follow Us on Google News

Google has released a new update on the Stable channel for its Chrome browser, addressing a series of security vulnerabilities.

The update has been rolled out as version 131.0.6778.139/.140 for Windows and Mac, and 131.0.6778.139 for Linux.

Users can expect the patch to become available over the coming days and weeks. A comprehensive list of changes in this build is accessible in the official Chrome changelog log.

- Advertisement - Google News

Security Fixes and Highlights

According to the Chrome Blog, the latest update includes three critical security fixes, two of which were identified by external researchers.

Leveraging 2024 MITRE ATT&CK Results for SME & MSP Cybersecurity Leaders – Attend Free Webinar

Google has temporarily restricted access to bug details to ensure most users are protected before full disclosure.

Additionally, details will remain limited if the issues stem from third-party libraries still awaiting a resolution. Here is a breakdown of the notable fixes:

  • CVE-2024-12381: Type Confusion in V8
    • Severity: High
    • The flaw in V8, Chrome’s JavaScript engine, could potentially allow attackers to execute arbitrary code by exploiting type confusion errors.
  • CVE-2024-12382: Use-After-Free in Translate
    • Severity: High
    • This vulnerability involves a use-after-free issue in the translation feature, which might allow malicious actors to gain unauthorized access or crash the browser.

Google expressed its gratitude to all external contributors who reported these vulnerabilities and collaborated to enhance Chrome’s security posture.

The company also highlighted the importance of internal audits, fuzz testing, and other proactive measures that helped uncover additional vulnerabilities addressed in this release.

Chrome users are urged to update their browsers immediately to stay protected from these critical exploits.

To update, navigate to Settings > About Chrome and ensure you’re using the latest version. Regular updates are essential to guard against potential security risks and maintain a safe browsing experience.

Investigate Real-World Malicious Links,Malware & Phishing Attacks With ANY.RUN - Try for Free

Divya
Divya
Divya is a Senior Journalist at GBhackers covering Cyber Attacks, Threats, Breaches, Vulnerabilities and other happenings in the cyber world.

Latest articles

Netgear EX6200 Flaw Enables Remote Access and Data Theft

Security researchers have disclosed three critical vulnerabilities in the Netgear EX6200 Wi-Fi range extender...

Tesla Model 3 VCSEC Vulnerability Lets Hackers Run Arbitrary Code

A high security flaw in Tesla’s Model 3 vehicles, disclosed at the 2025 Pwn2Own...

Quantum Computing and Cybersecurity – What CISOs Need to Know Now

As quantum computing transitions from theoretical research to practical application, Chief Information Security Officers...

Apache ActiveMQ Vulnerability Lets Remote Hackers Execute Arbitrary Code

A high vulnerability in Apache ActiveMQ’s .NET Message Service (NMS) library has been uncovered,...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

Netgear EX6200 Flaw Enables Remote Access and Data Theft

Security researchers have disclosed three critical vulnerabilities in the Netgear EX6200 Wi-Fi range extender...

Tesla Model 3 VCSEC Vulnerability Lets Hackers Run Arbitrary Code

A high security flaw in Tesla’s Model 3 vehicles, disclosed at the 2025 Pwn2Own...

Apache ActiveMQ Vulnerability Lets Remote Hackers Execute Arbitrary Code

A high vulnerability in Apache ActiveMQ’s .NET Message Service (NMS) library has been uncovered,...