This release, announced on Tuesday, July 15, 2025, is part of a coordinated cross-platform update that includes corresponding desktop versions for Windows, Mac, and Linux systems.
The latest Android update incorporates the same security fixes deployed across Chrome’s desktop counterparts, ensuring platform parity in vulnerability mitigation.
The security enhancements include patches for several high-severity Common Vulnerabilities and Exposures (CVEs), most notably CVE-2025-7656, an integer overflow vulnerability in the V8 JavaScript engine that carried a $7,000 bounty reward.
Additionally, the update addresses CVE-2025-6558, a high-severity flaw involving incorrect validation of untrusted input in ANGLE and GPU components, for which Google has confirmed active exploitation in the wild.
The security fixes also encompass CVE-2025-7657, a use-after-free vulnerability in WebRTC that could potentially allow remote code execution.
These vulnerabilities were identified through Google’s comprehensive security research program, which utilizes advanced detection tools including AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, and AFL fuzzing technologies.
Beyond security enhancements, Chrome 138.0.7204.157 for Android delivers substantial performance improvements and stability fixes.
The update leverages Google’s internal auditing processes and fuzzing initiatives to identify and resolve potential issues before they impact end users.
The Git log provides comprehensive documentation of all implemented changes, offering developers and security researchers detailed insights into the update’s scope.
The rollout strategy employs a gradual deployment mechanism through the Google Play Store, ensuring controlled distribution over the coming days to minimize potential disruption while allowing for rapid issue identification and resolution.
This approach aligns with Google’s established update methodology for maintaining system stability across its vast Android user base.
The Android update synchronizes with broader Chrome ecosystem improvements, including iOS version 138.0.7204.156 and ChromeOS updates spanning multiple channels.
This coordinated release strategy ensures consistent security posture and feature parity across all Chrome implementations.
Google encourages users experiencing issues to utilize the official bug reporting system, while the community help forum remains available for general support and troubleshooting.
The Chrome Release Team continues monitoring deployment metrics and user feedback to inform future development cycles and security enhancements.
Users can expect automatic update delivery through Google Play Store, with manual checking available through the application’s settings menu for immediate installation access.
Find this Story Interesting! Follow us on Google News, LinkedIn, and X to Get More Instant updates
The post Google Chrome 0-Day Vulnerability Under Active Exploitation appeared first on Cyber Security News.
This thing is poised to eat their lunch. | Photo by Amelia Holowaty Krales /…
Destiny fans are lamenting the future of Bungie's sci-fi shooter franchise, following a threadbare update…
CD Projekt has insisted it has “no plans” for further Cyberpunk 2077 DLCs or expansions…
The post GFiber & Stonepeak’s Astound Broadband To Merge appeared first on TV News Check.
The post Disney+ Goes Vertical With Verts appeared first on TV News Check.
HuskerVision, the University of Nebraska’s athletic production unit, has completed the second phase of a…
This website uses cookies.