Long Term Support Channel Update for ChromeOS

LTS-120 is being updated in the LTS channel to 120.0.6099.308 (Platform Version: 15662.104.0) for most ChromeOS devices. Want to know more about Long Term Support? Click here.

Release notes for LTS-120 can be found here 


This update contains selective Security fixes, including:


330575496  High  2024-2886 Use after free in WebCodecs
331237485  High 2024-3157 Out of bounds write in Compositing
330760873 High 2024-3159 Out of bounds memory access in V8
330588502 HIgh 2024-2887 Type Confusion in WebAssembly

Giuliana Pritchard
Google ChromeOS

Chrome Dev for Desktop Update

The Dev channel has been updated to 125.0.6420.3 for Windows, Mac and Linux.

A partial list of changes is available in the Git log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.

Prudhvi Bommana
Google Chrome

Chrome for Android Update

 Hello, Everyone! We've just released Chrome 124 (124.0.6367.54) for Android: it'll become available on Google Play over the next few days.

This release includes stability and performance improvements. You can see a full list of the changes in the Git log. If you find a new issue, please let us know by filing a bug.


Android releases contain the same security fixes as their corresponding Desktop (Windows & Mac:124.0.6367.60/.61;  Linux: 124.0.6367.60) unless otherwise noted.


Krishna Govind
Google Chrome

Stable Channel Update for Desktop

The Stable channel has been updated to 124.0.6367.60/.61 for Windows and Mac and 124.0.6367.60 to Linux which will roll out over the coming days/weeks. A full list of changes in this build is available in the Log.



The Extended Stable channel has been updated to 124.0.6367.60/.61 for Windows and Mac which will roll out over the coming days/weeks.


Security Fixes and Rewards

Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.


This update includes 22 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information.


[$20000][331358160] High CVE-2024-3832: Object corruption in V8. Reported by Man Yue Mo of GitHub Security Lab on 2024-03-27

[$10000][331383939] High CVE-2024-3833: Object corruption in WebAssembly. Reported by Man Yue Mo of GitHub Security Lab on 2024-03-27

[$3000][326607008] High CVE-2024-3834: Use after free in Downloads. Reported by ChaobinZhang on 2024-02-24

[$7000][41491379] Medium CVE-2024-3837: Use after free in QUIC. Reported by {rotiple, dch3ck} of CW Research Inc. on 2024-01-15

[$5000][328278717] Medium CVE-2024-3838: Inappropriate implementation in Autofill. Reported by Ardyan Vicky Ramadhan on 2024-03-06

[$5000][41491859] Medium CVE-2024-3839: Out of bounds read in Fonts. Reported by Ronald Crane (Zippenhop LLC) on 2024-01-16

[$3000][41493458] Medium CVE-2024-3840: Insufficient policy enforcement in Site Isolation. Reported by Ahmed ElMasry on 2024-01-22

[$1000][330376742] Medium CVE-2024-3841: Insufficient data validation in Browser Switcher. Reported by Oleg on 2024-03-19

[$TBD][41486690] Medium CVE-2024-3843: Insufficient data validation in Downloads. Reported by Azur on 2023-12-24

[$5000][40058873] Low CVE-2024-3844: Inappropriate implementation in Extensions. Reported by Alesandro Ortiz on 2022-02-23

[$3000][323583084] Low CVE-2024-3845: Inappropriate implementation in Network. Reported by Daniel Baulig on 2024-02-03

[$2000][40064754] Low CVE-2024-3846: Inappropriate implementation in Prompts. Reported by Ahmed ElMasry on 2023-05-23

[$1000][328690293] Low CVE-2024-3847: Insufficient policy enforcement in WebUI. Reported by Yan Zhu on 2024-03-08


We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.

As usual, our ongoing internal security work was responsible for a wide range of fixes:

  • [334957582] Various fixes from internal audits, fuzzing and other initiatives


Many of our security bugs are detected using AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, or AFL.


Interested in switching release channels? Find out how here. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.


Daniel Yip

Google Chrome

Beta Channel Update for ChromeOS / ChromeOS Flex

Hello All,

The Beta channel has been updated to ChromeOS version 15823.30.0 with Chrome Browser version 124.0.6367.66 for most ChromeOS devices.

If you find new issues, please let us know one of the following ways:

Interested in switching channels? Find out how.


Google ChromeOS.

Launch the FigJam whiteboard app directly from Google Meet Series One Board 65 and Desk 27 devices

What’s changing 

Since September 2023, Workspace users have enjoyed the convenience of launching FigJam, Figma’s free online whiteboard, directly in Google Meet. We’re excited to announce that you can now launch FigJam both in and out of an active Meet call from the Series One Board 65 and Desk 27 devices.




Who’s impacted

Admins and end users


Why you’d use it

Prior to this update, these rich collaborative tools were only available within a Meet call — now you can launch them from Board 65 and Desk 27 devices outside of a call for on-demand collaboration and problem solving. Existing Jamboard customers can find more resources related to the FigJam and Google Meet integration here.


Additional details

Migrating your Jamboard files to Figma
Figma’s integration allows users to easily migrate their existing Jamboards to FigJam files through the FigJam importer


Device support for additional apps
This enhancement is part of the next phase of digital whiteboarding for Google Workspace. We’ll continue to keep you updated as we add support for launching additional applications directly from Board 65 and Desk 27 devices. 


Getting started

Rollout pace


Availability

  • Available to all Google Workspace customers with Google Meet Board 65 and Desk 27 devices

Resources


Dark mode now available in Google Drive web

What’s changing

Today, we’re introducing a highly requested feature: Dark mode in Drive on web. This new setting aims to provide you with a more comfortable, customizable viewing experience for Drive. 
Dark mode now available in Google Drive web


Getting started 

  • Admins: There is no admin control for this feature. 
  • End users: To use Dark Mode, go to Drive > Settings > Appearance > Dark. Visit the Help Center to learn more about using Dark theme in Google Drive.

Rollout pace 

Availability 

  • Available to all Google Workspace customers, Google Workspace Individual subscribers, and users with personal Google accounts 

Resources 

Build a Dialogflow CX Google Chat app that understands and responds with natural language

This announcement was part of Google Cloud Next ‘24. Visit the Workspace Blog to learn more about the next wave of innovations in Workspace, including enhancements to Gemini for Google Workspace.


What’s changing

Earlier this year, we introduced the integration between Google Chat and Dialogflow CX through the Google Workspace Developer Preview Program


Dialogflow helps developers build and host Chat bots that understand natural language with minimal coding effort. The enhanced Dialogflow CX version, now generally available, provides a new way of designing virtual agents by taking a state machine approach to agent design. Now, developers have clear and explicit control over a conversation, enjoy a better end-user experience, and gain access to an improved development workflow. 


The Dialogflow CX integration with Google Chat allows developers to easily create Google Chat apps that are useful in all kinds of interactions, especially those that require natural human speech. For example, consider a Chat app that helps people rent cars. A user might write, "I'd like to rent a car". The Chat app might respond with a question like "Where would you like to pick up the vehicle?" which starts a human-like conversation with the user in which the Chat app both understands and responds with human speech while booking the car rental. 
Build a Dialogflow CX Google Chat app that understands and responds with natural language

Who’s impacted 

Developers 


Why it’s important 

Dialogflow CX enables developers to create Chat apps with virtual agents that are more conversational and capable of performing specific tasks. 


Getting started 


Rollout pace 


Availability 

  • Available to all Google Workspace customers 

Resources 

Chrome Stable for iOS Update

Hi everyone! We've just released Chrome Stable 124 (124.0.6367.68) for iOS; it'll become available on App Store in the next few hours.

This release includes stability and performance improvements. You can see a full list of the changes in the Git log. If you find a new issue, please let us know by filing a bug.

Erhu Akpobaro
Google Chrome