[German]Google has released updates to Google Chrome browser 119 (new development branch) in the stable channel for Mac, Linux and Windows on October 31, 2023. The iOS and Android apps of the Chrome browser have also been updated. The updates contain security fixes. Here is an overview of these updates.
Google Chrome 118.0.5993.117/.118
The announcement can be found on the Google blog. The stable channel has been updated to version 119.0.6045.105 for macOS and Linux. For Windows, the update updates the browser to version 119.0.6045.105/.106. Google states that it has fixed the following vulnerabilities.
- [$16000][1492698] High CVE-2023-5480: Inappropriate implementation in Payments. Reported by Vsevolod Kokorin (Slonser) of Solidlab on 2023-10-14
- [$11000][1492381] High CVE-2023-5482: Insufficient data validation in USB. Reported by DarkNavy on 2023-10-13
- [$TBD][1492384] High CVE-2023-5849: Integer overflow in USB. Reported by DarkNavy on 2023-10-13
- [$3000][1281972] Medium CVE-2023-5850: Incorrect security UI in Downloads. Reported by Mohit Raj (shadow2639) on 2021-12-22
- [$3000][1473957] Medium CVE-2023-5851: Inappropriate implementation in Downloads. Reported by Shaheen Fazim on 2023-08-18
- [$2000][1480852] Medium CVE-2023-5852: Use after free in Printing. Reported by [pwn2car] on 2023-09-10
- [$1000][1456876] Medium CVE-2023-5853: Incorrect security UI in Downloads. Reported by Hafiizh on 2023-06-22
- [$1000][1488267] Medium CVE-2023-5854: Use after free in Profiles. Reported by Dohyun Lee (@l33d0hyun) of SSD-Disclosure Labs & DNSLab, Korea Univ on 2023-10-01
- [$TBD][1492396] Medium CVE-2023-5855: Use after free in Reading Mode. Reported by ChaobinZhang on 2023-10-13
- [$TBD][1493380] Medium CVE-2023-5856: Use after free in Side Panel. Reported by Weipeng Jiang (@Krace) of VRI on 2023-10-17
- [N/A][1493435] Medium CVE-2023-5857: Inappropriate implementation in Downloads. Reported by Will Dormann on 2023-10-18
- [$3000][1457704] Low CVE-2023-5858: Inappropriate implementation in WebApp Provider. Reported by Axel Chong on 2023-06-24
- [$500][1482045] Low CVE-2023-5859: Incorrect security UI in Picture In Picture. Reported by Junsung Lee on 2023-09-13
Chrome will be rolled out to systems via the automatic update function over the next few days and weeks. You can (and should in this case) also update the browser manually (via the menu and the About Google Chrome command). The latest build of the Chrome browser can also be downloaded here.
Chrome for Android 119.0.6045.66
Furthermore, Google has updated Chrome for Android to version 119.0.6045.66 according to this Google post and will be distributed via update in the next few days. This version contains stability and performance improvements, as well as the same security fixes as mentioned above for the desktop versions of the browser.
Chrome for iOS 119.0.6045.66
Google has updated the Chrome app for iOS to version 119.0.6045.109 according to this Google post and will be distributed via app update and in the app store in the next few days. This version contains stability and performance improvements, as well as the same security fixes as mentioned above for the desktop versions of the browser.