Google says it found the security flaw being exploited in the wild, so it's important to update as soon as possible.
It allows a malicious WebP image to cause a heap buffer overflow, which can potentially be used to take control of your computer. The security vulnerability (labelled as CVE-2023-4863) affects libwebp, one of the most common ways for applications to render WebP images. Vivaldi and Brave Brower are also now rolling out the fix. There, you’ll see the current version you’re running and that an update is available. The security vulnerability also affects any browsers based on the Chromium project, so Microsoft just released Edge 1.81 to fix the same flaw. To manually update to the latest version, click the Options > Help > About Google Chrome. Otherwise, it should be automatically downloaded at some point in the coming days (if it hasn't already) and prompt you to restart the web browser. This computer will no longer receive Google Chrome updates because macOS 10.6 - 10.12 are no longer supported. If you manually check for Chrome updates, the update will likely be found and installed. This device won’t receive updates because Google Chrome no longer supports your operating system. Google Chrome has now rolled out a patch for the security flaw in its Stable and Extended stable channels, starting with version 1.187 for Mac and Linux and version versions 1.187/.188 on Windows.
