Google has rolled out new versions of Chrome (130.0.6723.58/59 for Windows and macOS, and 130.0.6723.58 for Linux), addressing 17 security vulnerabilities. Fortunately, none of these vulnerabilities have been actively exploited, providing users with reassurance. As is typical, other Chromium-based browser manufacturers are expected to follow suit with updates to maintain user protection.
In the official Chrome release blog, security researcher Daniel Yip detailed 13 of the 17 vulnerabilities resolved, with one identified as high risk—specifically, a use-after-free issue in the AI module (CVE-2024-9954). The remaining vulnerabilities are categorized as medium or low risk. Notably, Google does not disclose information regarding vulnerabilities discovered internally, highlighting the importance of collaboration with external researchers.
Recent Enhancements and Features
In addition to addressing vulnerabilities, the latest Chrome release introduces several new features. The integrated password manager allows users to seamlessly utilize passkeys across computers and Android devices. The browser’s security check has been enhanced to operate automatically in the background, further safeguarding user data. Chrome also features AI-driven real-time protection against phishing and malware, with users able to verify if Advanced Safe Browsing is activated in the settings under Privacy and Security.
Broader Impact on Chromium-based Browsers
As Chrome 130 is released, other Chromium-based browsers face pressure to implement timely updates. Currently, browsers like Brave, Microsoft Edge, Vivaldi, and Opera have yet to upgrade to Chromium 130 but are at the same security level as last week. Opera is finalizing version 115, which will be built on Chromium 130 and is still in the beta testing phase.
In summary, Google’s commitment to browser security and the introduction of new features highlight the company’s proactive stance in protecting users. As other browser manufacturers catch up with these updates, users should ensure their browsers remain up to date to mitigate potential security risks.
