GIVEAWAY: Patriot Viper Xtreme 5 DDR5, Viper Venom DDR5, and VP4300 2TB SSD

Patch Chrome now, as Google's browser has a nasty security flaw

That makes two zero-day vulnerabilities that have hit the Chrome browser in the space of a week, which isn't a good look for Google.

Patch Chrome now, as Google's browser has a nasty security flaw
1 minute & 53 seconds read time

Google has pushed out an update for its Chrome browser to patch up a serious vulnerability.

Check that your Chrome browser is up to date and running version 112.0.5615.137/138 (Image Credit: Google)

Check that your Chrome browser is up to date and running version 112.0.5615.137/138 (Image Credit: Google)

This is a fix for a zero-day security flaw (CVE-2023-2136), so it's been deployed in a fair old hurry by Google, which acknowledged that it was aware that an exploit for the vulnerability exists in the wild (meaning malicious actors out there have already leveraged this flaw to their advantage).

Bleeping Computer reports that running the new version of Chrome, 112.0.5615.137 (or 138), ensures that this problem is cured, and indeed a bunch of other vulnerabilities - eight of them in total.

One thing to be aware of here is that the fixes are now in place for those running Windows and Mac systems, but not Linux. The latter platform will be addressed soon, we're told, and given the now wide knowledge of the flaw, we'd imagine Google won't hang about.

If you want to make sure the patch is applied now, head to Chrome, go into Settings, and then select About Chrome at the bottom of the left-side menu. At that point, Chrome will update itself to the latest version (if it hasn't already - if it has done so, you'll see that it says you're running 112.0.5615.137/138).

Note that after the update process has finished, you'll need to close the browser and reopen it for the change to be applied. At any rate, even if you don't check in Settings, Chrome will update itself automatically when you shut it down (if a new version of the browser is available, of course).

This is a bit embarrassing for Google seeing as this new flaw is not the first zero-day to blight its browser this month. Indeed, just last week there was another zero-day that reared its ugly head and needed an emergency patch to be dealt with (that was CVE-2023-2033).

All in all, then, it's not been a great past week for Chrome on the security front. We haven't yet had the full details spilled on either of these flaws yet, and how they might have been exploited, because as Google reminds us: "Access to bug details and links may be kept restricted until a majority of users are updated with a fix."

Obviously the company doesn't want to arm any parties interested in these flaws for the wrong reasons with any information that could prove useful, because that would be quite an own goal.

Hopefully that's the last zero-day we'll see hit Chrome for some time, but we wouldn't bank on it. That's two zero-days so far for 2023, but last year, Google's browser witnessed nine of them.

Buy at Amazon

Lenovo IdeaPad 3i Laptop 14'

TodayYesterday7 days ago30 days ago
* Prices last scanned on 5/30/2023 at 12:00 pm CDT - prices may not be accurate, click links above for the latest price. We may earn an affiliate commission.

Darren has written for numerous magazines and websites in the technology world for almost 30 years, including TechRadar, PC Gamer, Eurogamer, Computeractive, and many more. He worked on his first magazine (PC Home) long before Google and most of the rest of the web existed. In his spare time, he can be found gaming, going to the gym, and writing books (his debut novel – ‘I Know What You Did Last Supper’ – was published by Hachette UK in 2013).

Newsletter Subscription

Related Tags

Newsletter Subscription
Latest News
View More News
Latest Reviews
View More Reviews
Latest Articles
View More Articles