Replace Chrome now to keep away from a newly discovered zero-day vulnerability

Google has launched an vital replace for Chrome, fixing a number of vulnerabilities in new Chrome variations 138.0.7204.157/158 for Home windows and macOS and 138.0.7204.157 for Linux. In response to Google, one of many vulnerabilities is already being exploited by assaults within the wild. Different Chromium-based browsers ought to observe go well with within the coming days.

Within the Chrome Releases weblog submit, Srinivas Sista lists the 2 vulnerabilities that had been found by exterior safety researchers and reported to Google. Google classifies these two vulnerabilities (CVE-2025-7656 and CVE-2025-7657) as excessive threat. These embrace an integer overflow within the V8 JavaScript engine and a use-after-free vulnerability within the WebRTC part.

Srinivas Sista additionally lists a 3rd vulnerability with a excessive threat potential: CVE-2025-6558. The reason for this error is that untrusted person enter (or information originating from exterior the browser) isn’t checked rigorously sufficient within the ANGLE graphics library and within the GPU part. Attackers can exploit this to inject and execute malicious code. Google stays silent concerning the different internally found vulnerabilities.

As a rule, Chrome updates itself robotically when a brand new model is offered. You may manually set off the replace test utilizing the menu merchandise Assist > About Google Chrome. Google has additionally launched Chrome for Android 138.0.7204.157 and Chrome for iOS 138.0.7204.156, which repair the identical vulnerabilities as within the desktop variations.

The producers of different Chromium-based browsers are actually required to observe go well with with their very own safety updates. Microsoft Edge, Courageous, and Vivaldi are presently on the safety degree previous to this Chrome replace. In the meantime, Opera 120.0.5543.61 continues to be on outdated Chromium 135 from April with its many safety vulnerabilities nonetheless in play.

Google plans to launch Chrome 139 firstly of August.