Google releases Chrome 143 security update patching 13 flaws
Take action: If you are using Google Chrome or other Chromium-based browsers (Edge, Brave, Vivaldi, Opera...) patch your browser ASAP. No critical flaws in this update, but don't wait for any of them to become actively exploited. Update now, it's trivial and all your tabs reopen after the update.
Learn More
Google has released Chrome 143 to the stable channel for Windows, Mac, and Linux, patching 13 security vulnerabilities that could allow attackers to execute arbitrary code on affected systems.
Vulnerabilities summary:
High Severity:
- CVE-2025-13630 - Type Confusion in V8 JavaScript engine
- CVE-2025-13631 - Inappropriate implementation in Google Updater
- CVE-2025-13632 - Inappropriate implementation in DevTools
- CVE-2025-13633 - Use after free in Digital Credentials
Medium Severity:
- CVE-2025-13634 - Inappropriate implementation in Downloads
- CVE-2025-13720 - Bad cast in Loader
- CVE-2025-13721 - Race condition in V8
Low Severity:
- CVE-2025-13635 - Inappropriate implementation in Downloads
- CVE-2025-13636 - Inappropriate implementation in Split View
- CVE-2025-13637 - Inappropriate implementation in Downloads
- CVE-2025-13638 - Use after free in Media Stream
- CVE-2025-13639 - Inappropriate implementation in WebRTC
- CVE-2025-13640 - Inappropriate implementation in Passwords
The update versions are 143.0.7499.40 for Linux and 143.0.7499.40/41 for Windows and Mac. The release will be distributed globally over the coming days. Users are strongly encouraged to update immediately. Users of other Chromium-based browsers, such as Microsoft Edge, Brave, Opera, and Vivaldi, should also apply security updates as they become available from their respective vendors, as these browsers share the same underlying Chromium codebase and probably is affected by the vulnerabilities.
Google does not disclose technical details about the vulnerabilities until the majority of browsers are updated.
