Chrome 143 Patches High-Severity Vulnerabilities

Chrome 143 Patches High-Severity Vulnerabilities

Posted on By CWS

Google on Tuesday promoted Chrome 143 to the secure channel with patches for 13 vulnerabilities reported by exterior researchers.

The recent spherical of Chrome patches resolves 4 high-severity flaws, together with a kind confusion difficulty within the V8 JavaScript and WebAssembly engine, tracked as CVE-2025-13630.

The remaining high-severity defects embrace inappropriate implementation bugs in Google Updater (CVE-2025-13631) and DevTools (CVE-2025-13632), and a use-after-free flaw in Digital Credentials (CVE-2025-13633).

Google says that it handed out $11,000 for the V8 vulnerability, and $3,000 for the Google Updater bug.

The brand new Chrome patches deal with three medium-severity safety holes: an inappropriate implementation flaw in Downloads, a nasty solid bug in Loader, and a race situation in V8.

The remaining six vulnerabilities addressed with the discharge of Chrome 143 are low-severity flaws.

They embrace 5 inappropriate implementation defects in Downloads, Break up View, WebRTC, and Passwords, and a use-after-free difficulty in Media Stream.

Google says it paid $18,000 in bug bounty rewards for 4 of the vulnerabilities, however has but to reveal the quantities for six extra points.Commercial. Scroll to proceed studying.

The web large makes no point out of any of those safety defects being exploited within the wild.

The newest Chrome iteration is now rolling out as model 143.0.7499.40 for Linux and variations 143.0.7499.40/41 for Home windows and macOS.

On Tuesday, the Chrome patches had been additionally rolled out for Android, in Chrome model 143.0.7499.52, and Chrome for iOS was up to date to model 143.0.7499.92.

Moreover, Google introduced that the browser’s Prolonged Steady channel has been up to date to model 142.0.7499.226 for Home windows and macOS.

Customers are suggested to use the brand new Chrome patches as quickly as doable, as Chrome vulnerabilities are sometimes well-liked targets for menace actors.

Associated: Chrome, Edge Extensions Caught Monitoring Customers, Creating Backdoors

Associated: Android Zero-Days Patched in December 2025 Safety Replace

Associated: Fluent Bit Vulnerabilities Expose Cloud Providers to Takeover

Associated: SonicWall Patches Excessive-Severity Flaws in Firewalls, E mail Safety Equipment

Security Week News Tags:, , ,

Related Posts

Substack Data Breach: User Information Leaked by Hacker Substack Data Breach: User Information Leaked by Hacker Security Week News
ArmorCode Secures M to Enhance AI Exposure Management ArmorCode Secures $16M to Enhance AI Exposure Management Security Week News
In Other News: CrowdStrike Vulnerabilities, CISA Layoffs, Mango Data Breach In Other News: CrowdStrike Vulnerabilities, CISA Layoffs, Mango Data Breach Security Week News
FBI Aware of 900 Organizations Hit by Play Ransomware FBI Aware of 900 Organizations Hit by Play Ransomware Security Week News
Penn and Phoenix Universities Disclose Data Breach After Oracle Hack Penn and Phoenix Universities Disclose Data Breach After Oracle Hack Security Week News
The Y2K38 Bug Is a Vulnerability, Not Just a Date Problem, Researchers Warn The Y2K38 Bug Is a Vulnerability, Not Just a Date Problem, Researchers Warn Security Week News