Key Takeaways:
- Google has issued an extra patch for a security vulnerability in Chrome that is being actively exploited, and users are urged to update immediately.
- The patch fixes three flaws in Chrome, including one that has an existing exploit in the wild.
- Chrome users can update manually by going to Settings > About Chrome, or allow the browser to update automatically.
- The latest version of Chrome (143.0.7499.109/.110 for Windows and macOS, and 143.0.7499.109 for Linux) is protected from these vulnerabilities.
- It is essential to keep Chrome up to date to prevent exploitation of security flaws.
Introduction to Chrome’s Security Vulnerability
Google has released an emergency patch for a security vulnerability in Chrome that is being actively exploited. This patch fixes three flaws in the browser, including one that has an existing exploit in the wild. With Chrome being the world’s most popular browser, with an estimated 3.4 billion users, the potential impact of this vulnerability is massive. If left unpatched, users could be at risk of exploitation simply by browsing the web. It is crucial to install these patches promptly to prevent attackers from taking advantage of the vulnerability.
The Importance of Updating Chrome
The reason why it is essential to update Chrome as soon as possible is that attackers often exploit these kinds of flaws before most users have a chance to update. By keeping Chrome up to date, users can protect themselves from potential threats. It is recommended to allow Chrome to update automatically, but users can also update manually by going to Settings > About Chrome. If an update is available, Chrome will start downloading it, and a restart will complete the update. Users can also find step-by-step instructions on how to update Chrome on every operating system.
Updating Chrome: A Step-by-Step Guide
To update Chrome manually, users can follow these simple steps. First, click on the More menu (three dots) and then go to Settings > About Chrome. If an update is available, Chrome will start downloading it. Once the download is complete, restart Chrome to complete the update. It is essential to note that the latest version of Chrome (143.0.7499.109/.110 for Windows and macOS, and 143.0.7499.109 for Linux) is protected from these vulnerabilities. Users can also check for updates by visiting the Chrome website and following the instructions provided.
The History of Chrome Zero-Days in 2025
2025 has been a busy year for Chrome zero-days, with at least seven zero-days exploited in the browser. In March, a sandbox escape tracked as CVE-2025-2783 was used in espionage operations against Russian targets. May brought an account-hijacking flaw (CVE-2025-4664), followed in June by multiple V8 issues (including CVE-2025-5419 and CVE-2025-6558) that let attackers run code in the browser and in some cases hop over the sandbox boundary. September added a V8 type-confusion bug (CVE-2025-10585) serious enough to justify another out-of-band patch. The latest security advisory mentions a vulnerability that has not yet received a CVE ID but is referred to as 466192044, and Google states that an exploit for this vulnerability exists in the wild.
The Latest Zero-Day Vulnerability
The latest zero-day vulnerability, tracked as CVE-2025-14174, is an out-of-bounds memory access in ANGLE in Google Chrome on Mac prior to 143.0.7499.110. This vulnerability allowed a remote attacker to perform out-of-bounds memory access via a crafted HTML page. The Cybersecurity and Infrastructure Security Agency (CISA) has added this vulnerability to their list of known exploited vulnerabilities. ANGLE is used as the default Web Graphics Library backend for both Google Chrome and Mozilla Firefox on Windows platforms. Chrome uses ANGLE for all graphics rendering on Windows, making this vulnerability a significant concern for users.
Conclusion and Recommendations
In conclusion, the security vulnerability in Chrome is a significant concern for users, and it is essential to update the browser as soon as possible. By keeping Chrome up to date, users can protect themselves from potential threats and prevent exploitation of security flaws. It is also crucial to be aware of the history of Chrome zero-days in 2025 and to take steps to prevent similar vulnerabilities in the future. Users can download Malwarebytes to remove threats and keep their devices secure. By taking these steps, users can ensure their online safety and security.
/file/dailymaverick/wp-content/uploads/2025/07/PHOTO-2025-06-10-14-44-52.jpg?w=768&resize=768,0&ssl=1 "Joburg Enters Second Phase of Water Maintenance Amid Ongoing Recovery")
/file/dailymaverick/wp-content/uploads/2025/07/PHOTO-2025-06-10-14-44-52.jpg?w=300&resize=300,300&ssl=1 "Joburg Enters Second Phase of Water Maintenance Amid Ongoing Recovery")
:max_bytes(150000):strip_icc()/kristin-cabot-091925-0adcc47a62e8489bb76441663823ae3c.jpg?w=300&resize=300,300&ssl=1 "Coldplay Concert Kiss Cam Star Kristin Cabot Speaks Out")
