PSA: Update your Google Chrome app right away to avoid a major security risk

Google is rolling out a new Chrome update to fix a major security risk that can be exploited on multiple devices running Android, Windows, Mac and Linux. The update is rolling out as version 119.0.6045.193 for Android, version 119.0.6045.199 for Mac and Linux and version 119.0.6045.199/.200 for Windows users.

In the changelog, Google notes that the latest Chrome update brings seven security fixes, including a fix for a zero-day vulnerability that Google calls CVE-2023-6345. According to Google, this security risk is caused by an “integer overflow” issue in the Skia graphics library, but the company doesn’t go into much details. In this regard, Google says that “Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.”

The Chrome update is available to download from the Google Play Store for Android users. You can also check that you’re on the latest update on PC via the ellipsis menu > Help > About Google Chrome. But if you were having second thoughts about switching to the new version, Google says the Chrome team “is aware that an exploit for CVE-2023-6345 exists in the wild.”

In case you didn’t know, Google bundles the same security fixes in Chrome updates on Android and desktop unless otherwise noted. So, if you don’t update to the latest Chrome version available on Android, someone might maliciously take advantage of this exploit and who knows what they’ll do with what they find on your browser. It’s also worth noting that Google is rolling out Chrome v120 to select users on Windows and Mac. But this may take some waiting before it arrives on Android.

Featured image: Play Store