Time to update Chrome, another vulnerability is exploited in the wild

Google released an update for its Chrome web browser some hours ago that fixes several vulnerabilities. One of these, CVE-2023-6345, is exploited in the wild according to Google.

Chrome users may want to update the browser asap to protect their browser against potential attacks. Updates are applied automatically over time on most user systems, but it may take days or even weeks before it lands on some devices.

Cautious users may want to speed up the process by selecting Menu > Help > About Google Chrome. The page that opens list the current version and installs any new version that is available, provided that there is an Internet connection. A restart completes the update.

The browser should now list one of the following versions on the page:

  • Chrome for Mac and Linux: 119.0.6045.199
  • Chrome for Windows: 119.0.6045.199 or 119.0.6045.200
  • Chrome Extended Stable for Mac and Windows: 118.0.5993.159
  • Chrome for Android: 119.0.6045.193

Chrome's 6th 0-day security issue in 2023

Google Chrome Emergency Update

Google reveals that it patched seven security issues in the Chrome update. Of these, six are listed on the official release notes page on the Chrome Releases website.

Besides the vulnerability that is exploited in the wild, Google lists five additional security issues that it patched. Four of these have a high severity rating. Two issues, including the one that is exploited in the wild, have no severity rating at the time.

The issue that is exploited in the wild exists in Skia. Skia is an open source 2D graphics library. Chrome users it as its graphics engine, which makes it a major component of the web browser.

The five remaining vulnerabilities address use after free, out of bounds memory access and type confusion vulnerabilities in a variety of components, including spellchecking, WebAudio or libavif, a library for encoding and decoding avif files.

Closing Words

Other Chromium-based web browsers are affected by the vulnerabilities as well. Expect updates for Microsoft Edge, Brave, Opera or Vivaldi in the coming hours and days.

Now You: do you use a Chromium-based browser?

Comments on "Time to update Chrome, another vulnerability is exploited in the wild" :

Leave a Reply

Your email address will not be published. Required fields are marked *

RECOMMENDED NEWS

Mozilla earned close to $600 million in 2022

Mozilla earned close to $600 million in 2022

Mozilla published its audited financial statement for the year 2022 this week. Revenue has stayed a...

2025-08-08
Microsoft Edge fixes 0-day vulnerability: confirms all Chromium-based browsers vulnerable

Microsoft Edge fixes 0-day vulnerability: confirms all Chromium-based browsers vulnerable

Microsoft released a security update for its Edge web browser that address several security issues,...

2025-08-06
Update for Windows Update adds end-of-support actions

Update for Windows Update adds end-of-support actions

With last month's scheduled security update for Windows 10 and 11 came another update that Microsof...

2025-08-04
Microsoft's Muse AI Model Faces Backlash from Game Development Community

Microsoft's Muse AI Model Faces Backlash from Game Development Community

Microsoft has unveiled Muse, a generative AI model designed to assist in the development of Xbox ga...

2025-08-06
UK Users Lose Access to Apple's End-to-End iCloud Encryption Following Government Order

UK Users Lose Access to Apple's End-to-End iCloud Encryption Following Government Order

Apple has announced the discontinuation of its Advanced Data Protection (ADP) feature for iCloud us...

2025-08-06
Apple Loses German Antitrust Appeal, Faces Stricter Regulatory Oversight

Apple Loses German Antitrust Appeal, Faces Stricter Regulatory Oversight

Apple has lost its appeal against a German regulatory assessment, resulting in heightened antitrust...

2025-08-04