[English]Google has released updates to Google Chrome browser 114 in the stable channel for Mac, Linux and Windows as of June 13, 2023 (I just saw the notice on Twitter). These are security updates that fix critical vulnerabilities (including CVE-2023-3214).
Advertising
Google Chrome 114.0.5735.133/134
The announcement for Chrome 114.0.5735.90/.91 can be found on the Google blog. The stable channel has been updated to version 114.0.5735.133 for macOS and Linux. For Windows, the update updates the browser to version 114.0.5735.133/134. It is an update that fixes 5 vulnerabilities, including the ones listed below.
- [$TBD][1450568] Critical CVE-2023-3214: Use after free in Autofill payments. Reported by Rong Jian of VRI on 2023-06-01
- [$3000][1446274] High CVE-2023-3215: Use after free in WebRTC. Reported by asnine on 2023-05-17
- [$TBD][1450114] High CVE-2023-3216: Type Confusion in V8. Reported by 5n1p3r0010 from Topsec ChiXiao Lab on 2023-05-31
- [$NA][1450601] High CVE-2023-3217: Use after free in WebXR. Reported by Sergei Glazunov of Google Project Zero on 2023-06-01
As usual, no details are given. Google also states that various fixes have been made based on results from internal audits, fuzzing and other initiatives. Chrome will be rolled out to systems via the automatic update feature in the next few days. One can (and in this case should) also update the browser manually (via the menu and the About Google Chrome command). The latest build of the Chrome browser can also be downloaded here.
Google Chrome 114.0.5735.130/.131 for Android
A Chrome for Android update raises the browser to version 114.0.5735.130/.131. The updated app will be rolled out via the Play Store in the coming days.
Advertising
