Chrome stable channel has announced the release of Chrome 132 for Windows, Mac, and Linux. The update, version 132.0.6834.83 (Linux) and 132.0.6834.83/84 (Windows, Mac), will be rolled out gradually in the upcoming days and weeks. This stable release includes various improvements and bug fixes, with a detailed list of changes available in the update journal. Articles on the new features of version 132 will soon be published on the Chrome and Chromium blogs.
Additionally, the extended stable channel will also be updated to version 132.0.6834.83/84 (Windows, Mac). The new version addresses 16 vulnerabilities, with some of them discovered by external researchers. Access to vulnerability details may be limited until most users update their browsers or for vulnerabilities that impact third-party libraries.
Key vulnerabilities include:
- cve-2025-0434 – Memory out-of-bounds access in V8, identified by DDME on October 21, 2024, with a $7,000 reward for detection.
- cve-2025-0435 – Improper implementation in Navigation, found by Alesandro Ortiz on November 18, 2024, with a $7,000 detection reward.
- cve-2025-0436 – Integer overflow in Skia, discovered by Han Zheng (Hexhive) on December 8, 2024, with a $3,000 reward.
- cve-2025-0437 – Information disclosure in Metrics, found by Xiatong Hou and Pisanbao on November 12, 2024.
- cve-2025-0438 – Stack overflow in tracing, identified by Han Zheng (Hexhive) on December 15, 2024.
Vulnerabilities vary in criticality,