Google released a security update for its Chrome web browser for the desktop and Android that fixes several security issue. One of the issues is rated high and already exploited on the Internet according to Google.
The details:
- The update is available for Chrome on Windows, Linux, Mac, and Android.
- It includes fixes for four security issues in total.
- The update is a point update for Chrome 136.
The security update changes the version of the Chrome web browser to the following versions:
- Windows and Mac: 136.0.7103.113 or 136.0.7103.114
- Linux: 136.0.7103.113
- Android: 136.0.7103.125
Google lists just two of the fixed security issues on the official Chrome Releases blog. One of them is CVE-2025-4664, which is rated high and described as a “insufficient policy enforcement in loader” security issue.
Malicious users may exploit the issue to “leak cross-origin data via a crafted HTML page”. Google notes that it is aware of exploits in the wild, but does not provide additional information on the scope of the attacks.
Chrome users are encouraged to update their browser immediately to protect their data against potential attacks targetting the vulnerability.
Desktop users may select Menu > Help > About Google Chrome to run a check for updates. This should pick up the latest version and install it on the device. Android users can’t speed up the installation of the update unfortunately.
It is possible that other Chromium-based browsers are also affected by the issue. Expect security updates for these browsers in the coming hours and days as well.
I don’t use Google Chrome especially not on a smartphone on which it’s disabled preferring Firefox instead. Anything Google related needs to be avoided like the plague.
Difficult to avoid YouTube (which owns by Google) unless you are using dedicated third party client. Also, if you want directions on your Android phone, you can not disable all Google services.
My friend wanted to make Gmail account for her yesterday. I told her I am not involved with Google products. She was so genuinely bewildered and almost irritated that I do not want to help her with Google. I barely convinced her to make Yahoo Mail. She wanted Google.