Chrome just patched 30 security flaws—and some are critical

news
Chrome just patched 30 security flaws—and some are critical

Google has released another major security update for Chrome, and this one is bigger than usual. The latest version fixes 30 vulnerabilities, including four critical flaws that could have been dangerous if left unpatched.

Even though none of these issues are currently being exploited, this is the kind of update you should not delay.

The biggest concern: multiple critical memory bugs

The most serious vulnerabilities are use-after-free (UAF) bugs.

These happen when software tries to access memory that has already been freed. In the worst cases, attackers can use these flaws to:

  • Crash the browser
  • Execute malicious code
  • Take control of parts of the system

In this update:

  • 4 vulnerabilities are classified as critical
  • Many others are also UAF-related
  • Together, they make up a large portion of the total fixes

There is also a type confusion bug in Chrome’s V8 JavaScript engine, which can also be exploited under the right conditions.

Most of the bugs were found internally

Interestingly, Google itself discovered most of these issues.

Around two-thirds of the vulnerabilities were found by Google engineers, while others came from external researchers—including one reported in the WebRTC component.

That shows how much ongoing internal testing and auditing goes into keeping Chrome secure.

What versions are affected

The patched versions include:

  • Chrome 147.0.7727.137 / 138 (Windows and macOS)
  • Chrome 147.0.7727.137 (Linux)
  • Chrome 147.0.7727.137 (Android)

All of these updates address the same set of vulnerabilities.

You probably already have it—but don’t assume

Chrome usually updates automatically, but that does not always happen immediately.

To be safe, you should manually check:

  • Open Chrome
  • Go to Help → About Google Chrome
  • Let it download and install the latest version

This ensures you are protected right away instead of waiting for background updates.

The takeaway: not urgent panic—but definitely update

There is no active exploitation reported yet, which is good news. But that can change quickly once vulnerabilities are publicly documented.

The key points:

  • A large number of bugs were fixed
  • Several are critical memory issues
  • Most affect core browser components

This is exactly the kind of update that is easy to ignore—but important to install.

Updating your browser is one of the simplest ways to protect your system, and in this case, it closes a fairly large set of potential attack paths in one go.

Discover: News

Related articles

Discussion (0)

Be the first to comment.