ChromeOSphere

Stable Channel Update for ChromeOS / ChromeOS Flex

By

Chrome Releases

M-142, ChromeOS version 16433.41.0 (Browser version 142.0.7444.147) has rolled out to ChromeOS devices on the Stable channel. 

If you find new issues, please let us know one of the following ways:

  1. File a bug

  2. Visit our ChromeOS communities

    1. General: Chromebook Help Community

    2. Beta Specific: ChromeOS Beta Help Community

  3. Report an issue or send feedback on Chrome

  4. Interested in switching channels? Find out how.

Security Fixes and Rewards

ChromeOS Vulnerability Rewards Program Reported Bug Fixes:

N/A

Other 3rd Party Security Fixes Included:

N/A

Android Security fixes can be found here

Chrome Browser Security Fixes:

[$TBD] [452296415] High CVE-2025-12036 Inappropriate implementation in V8. Reported by Google Big Sleep on 2025-10-15

[$TBD] [452071845] Medium CVE-2025-12443 Out of bounds read in WebXR. Reported by Aisle Research on 2025-10-15

[$50000.0] [450618029] High CVE-2025-12429 Inappropriate implementation in V8. Reported by Aorui Zhang on 2025-10-10

[$TBD] [449760249] High CVE-2025-12433 Inappropriate implementation in V8. Reported by Google Big Sleep on 2025-10-07

[$50000.0] [447613211] High CVE-2025-12428 Type Confusion in V8. Reported by Man Yue Mo of GitHub Security Lab on 2025-09-26

[$2000.0] [446294487] Medium CVE-2025-12437 Use after free in PageInfo. Reported by Umar Farooq on 2025-09-20

[$TBD] [444049512] Medium CVE-2025-12441 Out of bounds read in V8. Reported by Google Big Sleep on 2025-09-10

[$10000.0] [442860743] High CVE-2025-12430 Object lifecycle issue in Media. Reported by round.about on 2025-09-04

[$TBD] [439522866] High CVE-2025-12432 Race in V8. Reported by Google Big Sleep on 2025-08-18

[$4000.0] [436887350] High CVE-2025-12431 Inappropriate implementation in Extensions. Reported by Alesandro Ortiz on 2025-08-06

[$1000.0] [433027577] Medium CVE-2025-12438 Use after free in Ozone. Reported by Wei Yuan of MoyunSec VLab on 2025-07-20

[$0.0] [430555440] Low CVE-2025-12440 Inappropriate implementation in Autofill. Reported by Khalil Zhani on 2025-07-09

[$1000.0] [428397712] Low CVE-2025-12445 Policy bypass in Extensions. Reported by Thomas Greiner on 2025-06-29

[$2000.0] [40054742] Medium CVE-2025-12436  Policy bypass in Extensions. Reported by Luan Herrera (@lbherrera_) on 2021-02-08

[$TBD] [454485895] High CVE-2025-12727 Inappropriate implementation in V8. Reported by 303f06e3 on 2025-10-23

Andy Wu

Google ChromeOS


Posted in:

Tagged with: