Non-urgent patch - Chrome 115 without critical vulnerabilities
Take action: Finally a Chrome update that you don't need to panic about. Still several high severity patches and no mention of them being exploited. Just kindly and persistently *nudge* the users to update their browsers.
Learn More
Google released the latest Chrome, version 115, which is now available on the stable channel. This update includes patches for a total of 20 vulnerabilities.
Four of the externally reported security flaws are considered to be of 'high severity.'
- CVE-2023-3727 and CVE-2023-3728. Both of these vulnerabilities are related to use-after-free problems in WebRTC.
- CVE-2023-3730 a high-severity flaw that Chrome 115 addresses is a use-after-free bug, affecting Tab Groups.
- CVE-2023-3732, deals with an out-of-bounds memory access in Mojo .
Additionally, Chrome 115 tackles six medium-severity vulnerabilities reported by external researchers. These vulnerabilities were related to improper implementation flaws found in WebApp Installs, Picture In Picture, Web API Permission Prompts, Custom Tabs, Notifications, and Autofill components.
As usual, Google refrains from sharing technical details about the resolved vulnerabilities until the majority of users have installed the latest Chrome update.
