Google Chrome 138 point update fixes another 0-day security issue

TechExpert

Google released the weekly security update for the stable version of its Chrome web browser. The Chrome 138 point update addresses six security issues, one of which is already exploited in the wild.

Chrome users and users who have Chrome installed on their devices may want to update to the latest version immediately.

How to upgrade Chrome (desktop only):

  1. Open the Google Chrome web browser.
  2. Select Menu > Help > About Google Chrome.

This runs a check for updates. The latest security update should be picked up by the browser and installed. A restart of the browser is required to finalize the installation.

Bonus tip: Windows users may run winget upgrade google.chrome.exe to install the new version from the command line.

Chrome should list one of the following versions after installation of the upgrade:

  • Windows or Mac: 138.0.7204.157 or 138.0.7204.158
  • Linux: 138.0.7204.157

Google says that the update will roll out over "the coming days/weeks" to the entire population.

Another 0-day vulnerability

Chrome 0-day security update

The latest Chrome update fixes another 0-day vulnerability in the browser. Google confirms on the official release notes page that it is aware of exploits for CVE-2025-6558 in the wild.

The vulnerability CVE-2025-6558, Incorrect validation of untrusted input in ANGLE and GPU, has a severity of high. Google lists two additional security issues with a rating of high on the release notes page.

As always, Google does not provide additional information at this point. It is unclear how widespread the attacks are and how easy it is to exploit the issue.

Other Chromium-based browsers, including Microsoft Edge, Vivaldi, Opera, or Brave, are likely also affected. Expect updates for these browsers in the coming hours or days as well.

The Android version of Google Chrome is also affected by the security issues. Note that the installation of the update on Android can't be expedited, as it is handled exclusively by Google Play.

This is the second 0-day security issue in the browser. Google patched another recently in the browser that was also exploited in the wild.

Thank you for being a ComTek4u TechTips reader. The post Google Chrome 138 point update fixes another 0-day security issue appears on ComTek4u TechTips. (via Ghacks)