LTC-120 is being updated in the LTC (Long Term Support Candidate) channel, version 120.0.6099.301 (Platform Version: 15662.96.0), for most ChromeOS devices.
Giuliana Pritchard
Google Chrome OS
LTC-120 is being updated in the LTC (Long Term Support Candidate) channel, version 120.0.6099.301 (Platform Version: 15662.96.0), for most ChromeOS devices.
The Dev channel is being updated to 123.0.6312.18 (Platform version: 15786.10.0) for most ChromeOS devices. This build contains a number of bug fixes and security updates.
If you find new issues, please let us know one of the following ways
Interested in switching channels? Find out how.
Daniel Gagnon,
Google ChromeOS
The Stable channel is being updated to OS version: 15699.72.0 Browser version: 121.0.6167.212 for most ChromeOS devices.
If you find new issues, please let us know one of the following ways
Interested in switching channels? Find out how.
Matt Nelson,
Google ChromeOS
The Dev channel is being updated to 123.0.6312.11 (Platform version: 15786.4.0) for most ChromeOS devices. This build contains a number of bug fixes and security updates.
If you find new issues, please let us know one of the following ways
Interested in switching channels? Find out how.
Daniel Gagnon,
Google ChromeOS
LTC-120 is being updated in the LTC (Long Term Support Candidate) channel, version 120.0.6099.294 (Platform Version: 15662.94.0), for most ChromeOS devices.
The Stable channel is being updated to OS version: 15699.66.0 Browser version: 121.0.6167.188 for most ChromeOS devices.
If you find new issues, please let us know one of the following ways
Interested in switching channels? Find out how.
ChromeOS Vulnerability Bug Fixes:
High Users are able to bypass policies using kiosk apps in kiosk mode
Matt Nelson,
Google ChromeOS
The Stable channel is being updated to OS version: 15699.58.0 Browser version: 121.0.6167.159 for most ChromeOS devices.
If you find new issues, please let us know one of the following ways
Interested in switching channels? Find out how.
Security Fixes and Rewards
ChromeOS Vulnerabiltity Rewards Program Reported Bug Fixes:
[$1000] [1472961] Medium CVE-2024-1280 Out-of-bounds write in CAMX driver. Reported by lovepink on 2023-08-16
[$500] [1482676] Medium CVE-2024-1281 Out of Bound Write in cam_lrme_mgr_hw_prepare_update Reported by yqsun1997 on 2023-09-15
[$1000] [1466464] Medium CVE-2024-25556 OOB Write In PhysmemCreateNewDmaBufBackedPMR reported by lm0963hack on 2023-07-20
[$500] [1478971] Medium CVE-2024-25557 Physical Pages UAF in PowerVR GPU Device Side can cause Arbitrary Read and Write physical memory from userspace reported by lovepink on 2023-09-05
[$500] [1477097] Medium CVE-2024-25558 PowerVR GPU Driver Controllable OOB Writes because of Integer overflows in function DevmemIntChangeSparse reported by lovepink on 2023-08-29
Other 3rd Party Security Fixes Included:
High Fixes Use after free in Ash
Medium Fixes CVE-2023-6817 in Linux Kernel
Medium Fixes CVE-2023-6932 in Linux Kernel
Chrome Browser Security Fixes:
[$11000][1505080] High CVE-2024-0807: Use after free in WebAudio. Reported by Huang Xilin of Ant Group Light-Year Security Lab on 2023-11-25
[$6000][1504936] High CVE-2024-0808: Integer underflow in WebUI. Reported by Lyra Rebane (rebane2001) on 2023-11-24
[$1000][1463935] Medium CVE-2024-0814: Incorrect security UI in Payments. Reported by Muneaki Nishimura (nishimunea) on 2023-07-11
[$1000][1477151] Medium CVE-2024-0813: Use after free in Reading Mode. Reported by @retsew0x01 on 2023-08-30
[$1000][1505176] Medium CVE-2024-0806: Use after free in Passwords. Reported by 18楼梦想改造家 on 2023-11-25
[N/A][1494490] Low CVE-2024-0811: Inappropriate implementation in Extensions API. Reported by Jann Horn of Google Project Zero on 2023-10-21
[TBD][1497985] Low CVE-2024-0809: Inappropriate implementation in Autofill. Reported by Ahmed ElMasry on 2023-10-31
Users who are pinned to a specific release of ChromeOS will not receive these security fixes or any other security fixes. We recommend updating to the latest version of Stable to ensure you are protected against exploitation of known vulnerabilities.
To see fixes included in the Long Term Stable channel, see the release notes.
A new LTC-120, version 120.0.6099.272 (Platform Version: 15662.88.0), is being rolled out for most ChromeOS devices.
The Beta channel is being updated to OS version: 15699.54.0, Browser version: 121.0.6167.155 for most ChromeOS devices.
If you find new issues, please let us know one of the following ways
Interested in switching channels? Find out how.
Matt Nelson,
Google ChromeOS
Hello All,
The Stable channel is being updated to 120.0.6099.272 (Platform version: 15662.88.0) for ChromeOS devices and will be rolled out over the next few days.
If you find new issues, please let us know one of the following ways: