Google has released a major security update for its Chrome browser, patching over 420 vulnerabilities, including several highly critical flaws that could allow remote code execution and data theft. The update addresses a total of 429 security issues, with 371 detected internally by Google's security teams and 58 reported by external researchers.
Critical Vulnerabilities Fixed
Among the patched vulnerabilities, several were classified as highly critical, enabling attackers to execute arbitrary code remotely or steal sensitive information. These flaws could be exploited without user interaction, making them particularly dangerous. Google has not disclosed specific details of the most severe bugs to allow users time to update.
Bug Bounty Rewards
Independent cybersecurity researchers who reported vulnerabilities were awarded a total of $209,000 in bug bounties. The largest single payout of $97,000 went to an unnamed researcher for reporting a particularly critical flaw. This underscores Google's commitment to incentivizing responsible disclosure.
Update Urgency
Users are strongly advised to update Chrome to the latest version immediately. The patched versions are 149.0.7827.53 for Linux and 149.0.7827.53/54 for Windows and Mac. To update, users can go to Settings > About Chrome, where the browser will automatically check for and install the update. Restarting the browser is required to complete the process.
Android Privacy Enhancements
In addition to Chrome updates, Google also released the June Android update, which introduces new privacy features. One notable addition is fake call detection, designed to help users discreetly exit unwanted conversations. This feature enhances user safety and experience on Android devices.
Key Statistics
- Total vulnerabilities patched: 429
- Total bug bounty payouts: $209,000
- Highest single bounty awarded: $97,000
- Chrome update version: 149.0.7827.53/54
This update is part of Google's ongoing efforts to secure its browser and protect users from emerging threats. With the increasing sophistication of cyberattacks, keeping software up to date is crucial for maintaining security.
