Tag Archives: LTS

Long Term Support Channel Update for ChromeOS

LTS-114 is being updated in the LTS channel to 114.0.5735.351 (Platform Version: 15437.91.0) for most ChromeOS devices. Want to know more about Long Term Support? Click here.

This update contains selective Security fixes, including:


[40945671]     High  CVE-2024-0807 Use after free in WebAudio

[40945515]     High   CVE-2024-0808 Integer underflow in WebUI

ChromeOS Vulnerability Bug Fixes:
High Users are able to bypass policies using kiosk apps in kiosk mode

Other 3rd Party Security Fixes Included:
Medium Fixes CVE-2023-51042 in Linux Kernel
Medium Fixes CVE-2023-6931 in Linux Kernel
Medium Fixes CVE-2023-6817 in Linux Kernel
Medium Fixes CVE-2023-46813 in Linux Kernel
Medium Fixes CVE-2023-6932 in Linux Kernel


Durga Nallari
Google ChromeOS

Long Term Support Channel Update for ChromeOS

A new LTC-120, version 120.0.6099.272 (Platform Version: 15662.88.0), is being rolled out for most ChromeOS devices. 

If you have devices in the LTC channel, they will be updated to this version. The LTS channel remains on LTS-114 until March 28th, 2024. 

Release notes for LTC-120 can be found here 
Want to know more about Long-term Support? Click here


Giuliana Pritchard 
Google Chrome OS

Long Term Support Channel Update for ChromeOS

LTS-114 is being updated in the LTS channel to 114.0.5735.350 (Platform Version: 15437.90.0) for most ChromeOS devices. Want to know more about Long Term Support? Click here.


This update contains multiple Security fixes, including:
[1494565]     High  CVE-2023-6509 Use after free in Side Panel Search
[1513379]     High   CVE-2024-0333 Insufficient data validation in Extensions
[306119937]  Medium Fixes in Kernel for CVEs listed below
CVE-2023-21162, CVE-2023-21163, CVE-2023-21164, CVE-2023-21166, 
CVE-2023-21215, CVE-2023-21216, CVE-2023-21217, CVE-2023-21218, 
CVE-2023-21228, CVE-2023-21402



Durga Nallari
Google ChromeOS

Long Term Support Channel Update for ChromeOS

A new LTC-120 version 120.0.6099.235 (Platform Version: 15662.76.0), is being rolled out for most ChromeOS devices. 

If you have devices in the LTC channel, they will be updated to this version. The LTS channel remains on LTS-114 until April 2nd, 2024. 

Release notes for LTC-120 can be found here 
Want to know more about Long-term Support? Click here


Giuliana Pritchard 
Google Chrome OS

Long Term Support Channel Update for ChromeOS

LTS-114 is being updated in the LTS channel to 114.0.5735.347 (Platform Version: 15437.87.0) for most ChromeOS devices. Want to know more about Long Term Support? Click here.

This update contains multiple Security fixes, including:
1500921  High  CVE-2023-6706 Use after free in FedCM
1502102  High CVE-2023-6703 Use after free in Blink
1497984  High CVE-2023-6508 Use after free in Media Stream
1517354  High CVE-2024-0519 Out of bounds memory access in V8
High Fixes CVE-2023-4969 (LeftoverLocals) GPU Memory Leak on impacted platforms. Also see 446598 (https://kb.cert.org/vuls/id/446598)



Durga Nallari
Google ChromeOS

Long Term Support Channel Update for ChromeOS

The new LTS Candidate, LTC-120 version 120.0.6099.203 (Platform Version: 15662.64.3), is being rolled out for most ChromeOS devices. 


If you have devices in the LTC channel, they will be updated to this version. The LTS channel remains on LTS-114 until April 2nd, 2024. 

Release notes for LTC-120 can be found here 
Want to know more about Long-term Support? Click here


Giuliana Pritchard 
Google Chrome OS

Long Term Support Channel Update for ChromeOS

 

LTS-114 is being updated in the LTS channel to 114.0.5735.346 (Platform Version: 15437.84.0) for most ChromeOS devices. Want to know more about Long Term Support? Click here.

This update contains multiple Security fixes, including:

1513170 High  CVE-2023-7024  Heap Buffer overflow in WebRTC
303161001 High Fixes CVE-2023-5197 in Linux Kernel
1473957  Medium CVE-2023-5851 Inappropriate implementation in Downloads
1480852 Medium CVE-2023-5852 Use after free in Printing
1492396 Medium CVE-2023-5855 Use after free in Reading Mode




Durga Nallari
Google ChromeOS

Stable Channel Update for ChromeOS / ChromeOS Flex

Hello All,

The Stable channel is being updated to 120.0.6099.203 (Platform version: 15662.64.0) for most ChromeOS devices and will be rolled out over the next few days.

If you find new issues, please let us know one of the following ways:

Interested in switching channels? Find out how.

See the latest release notes.

Security Fixes and Rewards:

ChromeOS Vulnerabiltity Rewards Program Reported Bug Fixes:

[$TBD] [1466464] High CVE-TBD Out-of-bounds write in PowerVR GPU Driver. Reported by lm0963hack on 2023-07-20

[$TBD] [1477097] High CVE-TBD Out-of-bounds write in PowerVR GPU Driver. Reported by lovepink on 2023-08-30



Chrome Browser Security Fixes:

[$NA][1513170] High CVE-2023-7024: Heap buffer overflow in WebRTC. Reported by Clément Lecigne and Vlad Stolyarov of Google's Threat Analysis Group on 2023-12-19

[$10000][1497984] High CVE-2023-6508: Use after free in Media Stream. Reported by Cassidy Kim(@cassidy6564) on 2023-10-31

[$1000][1494565] High CVE-2023-6509: Use after free in Side Panel Search. Reported by Khalil Zhani on 2023-10-21

[$2000][1478613] Low CVE-2023-6511: Inappropriate implementation in Autofill. Reported by Ahmed ElMasry on 2023-09-04



Other 3rd Party Security Fixes Included:

[NA]  Medium Fixes CVE-2023-39191 in Linux Kernel



Please Note: Users who are pinned to a specific release of ChromeOS will not receive these security fixes or any other security fixes. We recommend updating to the latest version of Stable to ensure you are protected against exploitation of known vulnerabilities. 


To see fixes included in the Long Term Stable channel, see the Long Term Stable release notes.

- Google ChromeOS

Long Term Support Channel Update for ChromeOS

 LTS-114 is being updated in the LTS channel to 114.0.5735.343 (Platform Version: 15437.81.0) for most ChromeOS devices. Want to know more about Long Term Support? Click here.

This update contains multiple Security fixes, including:


1505053 High  CVE-2023-6345 Integer overflow in Skia.
1497997 High CVE-2023-5997 Use after free in Garbage Collection
1494461 High CVE-2023-6347 Use after free in Mojo
1497859 High CVE-2023-5996 Use after free in WebAudio




Giuliana Pritchard
Google Chrome OS

Long Term Support Channel Update for ChromeOS

LTS-114 is being updated in the LTS channel to 114.0.5735.340 (Platform Version: 15437.78.0) for most ChromeOS devices. Want to know more about Long Term Support? Click here.


This update contains multiple Security fixes, including:


1492698 High  CVE-2023-5480 Inappropriate implementation in Payments




Giuliana Pritchard
Google Chrome OS