Google has released a first security update for its Chrome 100 browser. Just a week ago, Google updated its Chrome browser to version 100. The first security update is now available.
The Chrome Release Blog only lists one vulnerability fixed with Chrome 100.0.4896.75. But it is classified as high risk. The vulnerability CVE-2022-1232 is a type confusion in the JavaScript engine V8. If read-in data is assigned to the wrong variable type (e.g. integer instead of text), a lot can basically happen. Anyone who specifically exploits such a gap can inject and execute code, for example.
Unlike the emergency Chrome update just over a week ago, no malicious code has yet been spotted in the wild that exploits the vulnerability to compromise Chrome users' computers. In the message in the Chrome release blog, the developers write that the extended stable release has also been upgraded to version 100.0.4896.75.
Other Chromium-based browsers
Some of the other Chromium-based browsers are still busy switching to Chromium 100. Brave and Microsoft (Edge) have already done this and are up to date before the security update mentioned above.
Vivaldi 5.1 is still based on Chromium 98, but the release of the new version 5.2, which is based on Chromium 100, is upcoming. The last quirks are currently being ironed out with Release Candidate 1 (RC 1).
Opera also has the switch to Chromium 100 upcoming. Opera 85.0.4341.47 still contains Chromium 99.0.4844.84, which corresponds to the security status of the last Chrome release before 100. Opera 86 is still in beta.
On Windows you can check the installed output by clicking on the three vertical dots in the top right and then on Help, About Google Chrome. This also triggers the update process, which actually runs automatically.