Googleβs Chrome team has officially rolled out Chrome 135 to the Stable Channel for Windows, macOS, and Linux, bringing a wave of security enhancements, bug fixes, and under-the-hood improvements to billions of users. This update contains 14 security fixes, some of which were identified by external researchers.
CVE-2025-3066, a high-severity use-after-free vulnerability in Chromeβs navigation system, discovered by security researcher Sven Dysthe (@svn-dys). Google has not yet released technical detailsβcommon practice until most users are patchedβbut this class of bug is notorious for enabling remote code execution or sandbox escapes, especially when combined with other flaws.While these issues vary in severity, they collectively cover core browser functionality including navigation, extension handling, downloads, and input validationβcomponents attackers frequently target to compromise browser integrity.
The updateβrolling out over the coming daysβbrings Chrome 135.0.7049.52 to Linux and 135.0.7049.41/42 to Windows and Mac. To ensure youβre protected against these vulnerabilities:
Open ChromeNavigate to Settings β About ChromeChrome will automatically check for updates and install Chrome 135