Google releases update for Chrome and Chromium browsers, fixes critical flaw
Take action: A fairly urgent update of your Chrome and Chromium based browsers (Opera, Edge, Brave). This one has a critical flaw patched so a quick update is more than prudent. Patch all your browsers.
Learn More
Google has released an security update for the Chrome web browser, addressing one critical vulnerability. This update was announced on Wednesday, March 19, 2025, and users are strongly encouraged to update their browsers immediately.
The update includes fixes for two security vulnerabilities:
- CVE-2025-2476 (CVSS score not available, Google ranks it as Critical) - a "Use-after-free" vulnerability in Chrome's Lens feature. In this type of vulnerability, the program accesses memory resources that have already been released, potentially allowing attackers to inject and execute malicious code. According to Google's assessment, this vulnerability is classified as "critical" risk level, suggesting exploitation could be relatively straightforward—likely requiring only a visit to a specially crafted malicious website.
- A second security fix that was discovered through Google's internal security processes. Google has not provided specific details about this vulnerability, following their practice of restricting information until most users have updated.
The Stable channel has been updated to the following versions:
- Windows and Mac: 134.0.6998.117/.118
- Linux: 134.0.6998.117
The Extended Stable channel has been updated to version 134.0.6998.89 for Windows and Mac.
These updates will roll out progressively over the coming days and weeks. Chrome for Android is currently at version 134.0.6998.108. No active attacks exploiting these vulnerabilities have been reported at this time.
Users are advised to update their Chrome and Chromium based browsers as soon as possible.
