Security updates for Chromium-based browsers – PC-WORLD

Frank Zieman

On April 26, Google released the new major version 101 of its Chrome browser. The update to Chrome 101.0.4951.41 fixes 30 security vulnerabilities. Several manufacturers of Chromium-based browsers have now followed suit and updated their software. So far these are Brave, Microsoft (Edge) and Vivaldi. Opera takes longer again.

Until Google’s update to Chrome 101, Brave, Edge, Opera and Vivaldi were at the same security level as Chrome (Chromium 100.0.4896.127).

brave

was the fastest to respond and on April 27 provided an update to version 1.38.109 based on Chromium version 101.0.4951.41. Vivaldi followed suit on April 28th and released an update to version 5.2.2623.41. It still contains Chromium 100, but the vulnerabilities have also been eliminated in the Chromium version 100.0.4896.147 used.

Microsoft has its browser

Edge

updated later the same day, making the switch to Chromium 101. Edge 101.0.1210.32 contains Chromium 101.0.4951.41 – like Chrome and Brave. In addition, Microsoft has patched two Edge-specific gaps. Microsoft identifies CVE-2022-29146 as medium risk. An attacker could gain elevated privileges and break their code out of the browser sandbox. The CVE-2022-29147 spoofing vulnerability has a low risk rating and affects IE mode in Edge.

▶The latest security updates

Opera also has the switch to Chromium 101 ahead of it. The current Opera version 86.0.4363.32 from April 27 still contains Chromium 100.0.4896.127. After all, this corresponds to the security status of the last Chrome issue before 101 (April 14), in which Google had closed a 0-day gap. Opera 87 (with Chromium 101) is still in beta.

Chromium-based browsers at a glance: