[German]To end this week, here is a summary of the two browsers Chrome and Edge. Both browsers have critical security vulnerabilities that are being exploited. Browser updates are recommended. Google is also enhancing its Chrome browser (outside the EU) with AI. Edge is set to receive the Adobe PDF Reader in the near future.
Chrome emergency patch for vulnerability CVE-2025-10585
Google released a security update on September 17, 2025, which closes four vulnerabilities classified as high, according to this entry in the Google blog:
- [NA][445380761] High CVE-2025-10585: Type Confusion in V8. Reported by Google Threat Analysis Group on 2025-09-16
- [$15000][435875050] High CVE-2025-10500: Use after free in Dawn. Reported by Giunash (Gyujeong Jin) on 2025-08-03
- [$10000][440737137] High CVE-2025-10501: Use after free in WebRTC. Reported by sherkito on 2025-08-23
- [TBD][438038775] High CVE-2025-10502: Heap buffer overflow in ANGLE. Reported by Google Big Sleep on 2025-08-12
Google writes that an exploit for the type confusion vulnerability CVE-2025-10585 in V8 exists in the wild (no details are available; The Register only has assumptions here). An immediate update is recommended. The stable channel will be updated to 140.0.7339.185/.186 for Windows/Mac and 140.0.7339.185 for Linux.
Microsoft is working on an emergency patch for Edge
Benni also pointed out an emergency patch for Microsoft Edge on September 18, 2025, in the discussion area of the blog on September 19, 2025. According to the Edge release notes, Microsoft is aware of the current security vulnerabilities in Edge. They are actively working on releasing a security update.
There is no mention of a new version in the security notes yet. However, Edge 140.0.3485.81 and Edge WebView2 Runtime 140.0.3485.81 can already be downloaded from the Microsoft Update Catalog.
Addendum: On Sept. 19, 2025 the Edge Stable version 140.0.3485.81 has been release, fixes CVE-2025-10585.
Google Chrome gets Gemini
On September 18, 2025, Google announced in its post Gemini in Chrome will soon be generally available, pre-configure access for end users in advance that it would be introducing Gemini in Google Chrome for all Google Workspace users with access to the Gemini app in the coming weeks. It will probably not be introduced for all users (yet).
Gemini in Chrome is an AI browsing assistant designed to help users complete tasks on Mac and Windows devices. Users can ask Gemini for answers and insights, engage in detailed dialogues with Gemini Live, and much more, according to Google, using up to 10 browser tabs and the Google Workspace app as context.
Before general availability, administrators can decide whether access to Gemini in Chrome is "allowed" or "not allowed" for their users. This can be configured via two settings: Chrome Gemini settings and Gemini app service settings. Important information about compliance certifications for Gemini in Chrome can be found in the "Further details" section below. Google plans to publish more information on its "Workspace Updates" blog once this feature is generally available. (via)
Edge 141 will include Adobe PDF Viewer
I was under the impression that the Edge browser had long since integrated Adobe's PDF Viewer. However, I recently came across the article Edge Beta: Kommende Version 141.0 bringt den neuen PDF-Viewer by German site Dr. Windows. It reports that version 141 of the Microsoft Edge browser will replace the previous PDF viewer with Adobe PDF Acrobat Reader as the viewer. The roadmap (since April 2025) envisages a rollout from October 2025.
If Adobe no longer supports 32 bit version of its Acrobat Reader then is its integration still possible in 32 bit version of Microsoft Edge?