Last week, Google released Chrome 128, which, among other things, fixed a zero-day vulnerability. Today, the company released an update for Chrome 128 that fixes four security issues. None of these vulnerabilities have reportedly been exploited in the wild yet. Other Chromium-based browsers are likely to follow Google’s lead and release updates soon. We’ll keep you updated on any developments regarding these browser updates.
In the Chrome Releases blog, a Google spokesperson listed the four fixed vulnerabilities. They were discovered by third-party researchers who reported them to Google. All four vulnerabilities are classified by the company as “high risk.” One of them, related to “type confusion” in the V8 JavaScript engine, was reported twice this week (CVE-2024-7969, CVE-2024-8194). The other two vulnerabilities are also related. They are related to a buffer overflow in the open-source 2D graphics library Skia (CVE-2024-8193, CVE-2024-8198).
Updating Chrome
Chrome usually updates automatically when it starts and a new version is released, but if your browser has not yet updated, you can start the update process manually. To do this, open the menu item “Settings” -> “Help” -> “About Google Chrome”, wait for the update to download, and then restart the browser.
Other Chromium-based Browsers
At the time of writing, other Chromium-based browsers have not released updates. Brave and Microsoft Edge have already switched to Chromium 128, but without further updates. Opera version 113 just moved to Chromium 127, Vivaldi version 6.8 still uses the extended stable channel of Chromium version 126, and Vivaldi 6.9 is based on the latest Chromium 128. All four browsers are protected from the zero-day vulnerability CVE-2024-7971, which was reported last week.
The importance of these security updates cannot be overstated, as they address high-risk vulnerabilities that could potentially be exploited by malicious actors. While it’s reassuring that none of these vulnerabilities have been exploited in the wild yet, it’s crucial for users to update their browsers as soon as possible to ensure they’re protected against potential threats.
As browser security continues to evolve, it’s essential for users to stay informed about the latest updates and potential risks. Regular updates not only provide new features but also patch security holes that could compromise user data and privacy. We’ll keep you updated on any further developments regarding these browser updates and any potential security implications.
For users of Chromium-based browsers other than Chrome, it’s advisable to keep an eye out for updates from their respective developers, adds NIXsolutions. While these browsers may not have released updates addressing the specific vulnerabilities mentioned in this Chrome update, they are likely to follow suit in the near future. In the meantime, users should exercise caution while browsing and avoid clicking on suspicious links or downloading files from untrusted sources.