Cyber Security News

Latest Chrome Update Addresses Multiple High-Risk Security Issues

Google has released a critical update for its Chrome browser, advancing the stable channel to version 134.0.6998.88 for Windows, Mac, and Linux, and 134.0.6998.89 for Windows and Mac on the Extended Stable channel.

This update includes several high-priority security fixes to safeguard users against potential threats. The rollout will occur over the coming days and weeks.

Key Security Fixes

The latest update includes five security fixes, with several high-risk vulnerabilities being addressed. These were reported by external researchers and are detailed below:

CVE NumberRisk LevelDescriptionReporter Date
CVE-2025-1920HighType Confusion in V8Excello s.r.o., 2025-02-21
CVE-2025-2135HighType Confusion in V8Zhenghang Xiao (@Kipreyyy), 2025-03-02
CVE-TBDHighOut of bounds write in GPUReported on 2025-03-05
CVE-2025-2136MediumUse after free in InspectorSakana.S, 2025-02-10
CVE-2025-2137MediumOut of bounds read in V8zeroxiaobai@, 2025-02-25

Several researchers received rewards for their contributions:

  • CVE-2025-1920 earned a $7,000 reward for Excello s.r.o.
  • CVE-2025-2135 is pending reward determination.
  • CVE-2025-2136 received a $3,000 reward for Sakana.S.
  • CVE-2025-2137 earned a $2,000 reward for zeroxiaobai@.

Google also acknowledged all security researchers who worked during the development cycle to prevent security bugs from reaching the stable channel.

Detailed instructions are available on the Chrome website for users interested in switching release channels.

If you encounter any issues following the update, you can report them by filing a bug or seeking assistance from the community help forum.

Users must update their browsers to protect themselves from the latest security vulnerabilities.

These updates often include fixes for high-risk issues like type confusion and out-of-bounds write/read scenarios, which can be exploited by malicious actors if left unpatched.

As always, vigilance and keeping software up-to-date are key measures in maintaining digital security.

Users are encouraged to keep an eye on the Chrome Security Page for more information and updates on security fixes.

Are you from SOC/DFIR Teams? – Analyse Malware Incidents & get live Access with ANY.RUN -> Start Now for Free.

Divya

Divya is a Senior Journalist at GBhackers covering Cyber Attacks, Threats, Breaches, Vulnerabilities and other happenings in the cyber world.

Recent Posts

Dutch Services Disrupted by DDoS Attacks From Russian-Affiliated Hacktivists

Multiple Dutch organizations have experienced significant service disruptions this week due to a series of…

8 hours ago

Seven Malicious Packages Exploit Gmail SMTP to Run Harmful Commands

A major supply chain security incident has rocked the Python open-source community as researchers at…

9 hours ago

CISA Issues New ICS Advisories Addressing Critical Vulnerabilities and Exploits

The Cybersecurity and Infrastructure Security Agency (CISA) has issued two new advisories revealing critical vulnerabilities…

10 hours ago

NVIDIA TensorRT-LLM Vulnerability Let Hackers Run Malicious Code

NVIDIA has issued an urgent security advisory after discovering a significant vulnerability (CVE-2025-23254) in its…

11 hours ago

CISA Issues Alert on Actively Exploited Apache HTTP Server Escape Vulnerability

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding a newly…

12 hours ago

Disney Hacker Admits Guilt After Stealing 1.1TB of Internal Data

A 25-year-old man from Santa Clarita, California, has agreed to plead guilty to hacking into…

12 hours ago