Google released Chrome 150, addressing 27 vulnerabilities, notably two critical flaws in Ozone and Views. This update highlights an ongoing trend of Google discovering most flaws internally, with rewards for external submissions decreasing as a result.
Google announced the rollout of Chrome 150, which resolves a total of 27 vulnerabilities including two rated as critical severity. This update reinforces Chrome's commitment to security by addressing various types of flaws, specifically those that could lead to significant user risks.
The critical vulnerabilities pertain to use-after-free issues found in the browserβs Ozone and Views components. The update also fixes 13 use-after-free defects overall, with other vulnerabilities categorized as high and medium severity. Various flaws such as integer overflow and insufficient policy enforcement were also patched.
This update is part of a broader initiative, with Google having resolved over 1,400 vulnerabilities in Chrome since April, emphasizing the importance of maintaining a secure browsing experience.
A notable trend observed is that most vulnerabilities were discovered by Google's own security team, with only three reported by external researchers. This has led to reduced bug bounty rewards, indicating a shift in how vulnerabilities are being identified and reported.
The latest updates for Chrome are available for download for Windows and macOS as versions 150.0.7871.114/.115, and for Linux as version 150.0.7871.114. Users are encouraged to update to the latest version to ensure their browsers are secure.
β¨ This summary was generated by AI from the outlets' reporting listed below. It is not independently verified and may contain errors β check the original sources. How BrevFeed works β
Google released Chrome 150, addressing 27 vulnerabilities, notably two critical flaws in Ozone and Views. This update highlights an ongoing trend of Google discovering most flaws internally, with rewards for external submissions decreasing as a result.