Google has just released an emergency update Chrome 116 to fix a serious security vulnerability reported by Apple Security Engineering and Architecture (SEAR) and Citizen Lab on September 6, 2023, which is a buffer overflow in WebP .
WebP is an image format developed by Google to optimize web surfing. WebP has high compression capabilities, WebP images are on average 25-34% smaller than JPEG images and 26% smaller than PNG images.
Google warns that this vulnerability has been exploited in the wild but does not provide details about the vulnerability. Therefore, Google encourages users to update to the latest version of the Chrome browser to fix the problem and protect the browser from exploitation, limiting potential attacks.
Currently, the security update for Android and iOS users has not been rolled out yet.
There is currently no specific information so it is unclear whether this issue affects other browsers based on open source Chromium such as Microsoft Edge, Brave, Vivaldi or Opera… or not. However, users should still proactively update their browsers to the latest version.
To update Chrome 116, it will take some time for the update to download. Google Chrome versions on each operating system, specifically:
Linux or Mac: Chrome 116.0.5845.187
Windows: Chrome 116.0.5845.188
Mac: Chrome 116.0.5845.187