"Google issued an emergency fix for a Chrome vulnerability already under exploitation, which marks the world's most popular browser's eighth zero-day bug of 2025. We have even fewer than usual details about this security flaw, and the missing details as of early Thursday include a CVE (still listed as "under coordination"), what type of vulnerability Google fixed in Chrome, and who spotted and reported the security hole."
"Mac and Windows users should update to 143.0.7499.109/.110 to address the issue, and 143.0.7499.109 is the update for Linux systems. In addition to plugging 466192044, the latest Chrome update also includes a fix for a medium-severity use-after-free flaw in Password Manager, tracked as CVE-2025-14372 and reported by Weipeng Jiang. Plus, another medium-severity security hole, CVE-2025-14373, that's due to inappropriate implementation in Toolbar, now has a fix. Khalil Zhani reported this one."
Google issued an emergency Chrome update to address an actively exploited high-severity vulnerability tracked as 466192044. The CVE is listed as "under coordination" and Google did not disclose the vulnerability type or the reporter. Mac and Windows users should update to 143.0.7499.109/.110, and Linux users should update to 143.0.7499.109. The update also fixes a medium-severity use-after-free flaw in Password Manager (CVE-2025-14372, reported by Weipeng Jiang) and a medium-severity Toolbar implementation bug (CVE-2025-14373, reported by Khalil Zhani). This is Chrome's eighth zero-day of 2025 and follows recent Android zero-days.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]