Google Chrome 119 Released: Fix for 15 security Flaws – Patch Now!

Google has launched Chrome 119 to the stable channel for Windows, Mac, and Linux, alongside with 15 safety patches.

Model 119.0.6045.105 for Linux and macOS and version 119.0.6045.105/.106 for Windows are the most fresh versions of Chrome at this time on hand to users. Over the approaching days and weeks, the update will be implemented. Google Document says.

Excessive-Severity Vulnerabilities Addressed

A excessive-severity vulnerability related to inappropriate implementation of payments is tracked as CVE-2023-5480. Vsevolod Kokorin (Slonser) of Solidlab reported the topic, and Google paid a bounty of $15,000.

Next is the excessive-severity vulnerability in USB with inadequate recordsdata validation, identified as CVE-2023-5482. DarkNavy reported the topic, and a bounty of $11,000 changed into awarded.

This vulnerability, identified as CVE-2023-5849, is a excessive-severity USB integer overflow. DarkNavy first reported this; Google has no longer yet made up our minds how noteworthy will be given out.

Medium and Low Severity Vulnerabilities Addressed

An erroneous safety user interface (UI) in downloads is a medium-severity malicious program identified as CVE-2023-5850. Following Mohit Raj’s (shadow2639) file, a bounty of $3000 changed into granted.

Harmful implementation in downloads is a Medium-severity malicious program identified as CVE-2023-5851. Shaheen Fazim reported the insist and changed into awarded a $3000 prize.

The next vulnerability with a medium severity is CVE-2023-5852; exercise after free printing. $2000 changed into awarded when [pwn2car] reported it.

A medium-severity vulnerability, CVE-2023-5853, is said to an erroneous safety user interface in downloads. Hafiizh reported this, and a bounty of $1,000 changed into given.

Order after free in profiles is a medium-severity flaw tagged as CVE-2023-5854. Dohyun Lee (@l33d0hyun) of SSD-Disclosure Labs & DNSLab, Korea University, reported it, and $1000 changed into given out.

CVE-2023-5855 is a medium-severity malicious program. Order after free in Reading Mode. ChaobinZhang reported it, and Google has no longer yet particular how noteworthy might be distributed.

CVE-2023-5856, “Order after free in Aspect Panel,” is the next medium-severity malicious program being mounted. Weipeng Jiang (@Krace) of VRI reported this, and Google has no longer yet particular how noteworthy will be launched.

A insist of medium severity, inappropriate download implementation, is being tracked as CVE-2023-5857. Will Dormann reported on this.

A insist of low severity and inappropriate implementation in WebApp companies is being tracked as CVE-2023-5858. Axel Chong reported this, and $3000 changed into awarded.

Unsuitable safety UI in Image Within the insist is a low-severity malicious program tagged as CVE-2023-5859. $500 changed into awarded as a bounty after Junsung Lee reported this.

How Carry out I Exchange?

To take a look at the most fresh version on desktop devices, users of Google Chrome can navigate to Menu > Reduction > About Google Chrome or kind chrome://settings/lend a hand into the tackle bar.

As quickly as the rep online page is accessed, the browser appears to be like for updates; it downloads and installs any that it finds. It ought to detect and install Chrome 119. To realize the update, the browser ought to easy be restarted.

Google recommends users update the most fresh version of Google Chrome to forestall exploiting vulnerabilities.

Supply protection to vulnerabilities the usage of Patch Supervisor Plus to patch over 850 third-birthday celebration applications snappily. Try a Free Trial to make obvious 100% safety.