Chrome 135: 14 Security Fixes, High-Severity CVE-2025-3066 Flaw Patched

Google’s Chrome team has officially rolled out Chrome 135 to the Stable Channel for Windows, macOS, and Linux, bringing a wave of security enhancements, bug fixes, and under-the-hood improvements to billions of users. This update contains 14 security fixes, some of which were identified by external researchers.

CVE-2025-3066, a high-severity use-after-free vulnerability in Chrome’s navigation system, discovered by security researcher Sven Dysthe (@svn-dys). Google has not yet released technical details—common practice until most users are patched—but this class of bug is notorious for enabling remote code execution or sandbox escapes, especially when combined with other flaws.

Here’s a snapshot of the most notable externally reported issues addressed in Chrome 135:

While these issues vary in severity, they collectively cover core browser functionality including navigation, extension handling, downloads, and input validation—components attackers frequently target to compromise browser integrity.

The update—rolling out over the coming days—brings Chrome 135.0.7049.52 to Linux and 135.0.7049.41/42 to Windows and Mac. To ensure you’re protected against these vulnerabilities:

• Open Chrome
• Navigate to Settings → About Chrome
• Chrome will automatically check for updates and install Chrome 135

Related Posts:

• Researchers successfully launch GPS spoofing attacks on car navigation systems
• Google Messages Rolls Out New Protections Against Scams and Sensitive Content
• AMD Patches Multi Vulnerabilities in Embedded Processors