Chrome Releases: March 2022

Stable Channel Update for Desktop

Tuesday, March 29, 2022

The Chrome team is delighted to announce the promotion of Chrome 100 to the stable channel for Windows, Mac and Linux. Chrome 100 is also promoted to our new extended stable channel for Windows and Mac. This will roll out over the coming days/weeks.

Chrome 100.0.4896.60 contains a number of fixes and improvements -- a list of changes is available in the log. Watch out for upcoming Chrome and Chromium blog posts about new features and big efforts delivered in 100.

Security Fixes and Rewards

Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.

This update includes 28 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information.

[$7000][1292261] High CVE-2022-1125: Use after free in Portals. Reported by Khalil Zhani on 2022-01-29

[$5000][1291891] High CVE-2022-1127: Use after free in QR Code Generator. Reported by anonymous on 2022-01-28

[$5000][1301920] High CVE-2022-1128: Inappropriate implementation in Web Share API. Reported by Abdel Adim (@smaury92) Oisfi of Shielder on 2022-03-01

[$3000][1300253] High CVE-2022-1129: Inappropriate implementation in Full Screen Mode. Reported by Irvan Kurniawan (sourc7) on 2022-02-24

[$1000][1142269] High CVE-2022-1130: Insufficient validation of untrusted input in WebOTP. Reported by Sergey Toshin of Oversecurity Inc. on 2020-10-25

[$NA][1297404] High CVE-2022-1131: Use after free in Cast UI. Reported by Abdulrahman Alqabandi, Microsoft Browser Vulnerability Research on 2022-02-15

[$TBD][1303410] High CVE-2022-1132: Inappropriate implementation in Virtual Keyboard. Reported by Andr.Ess on 2022-03-07

[$TBD][1305776] High CVE-2022-1133: Use after free in WebRTC. Reported by Anonymous on 2022-03-13

[$TBD][1308360] High CVE-2022-1134: Type Confusion in V8. Reported by Man Yue Mo of GitHub Security Lab on 2022-03-21

[$16000][1285601] Medium CVE-2022-1135: Use after free in Shopping Cart. Reported by Wei Yuan of MoyunSec VLab on 2022-01-09

[$7000][1280205] Medium CVE-2022-1136: Use after free in Tab Strip . Reported by Krace on 2021-12-15

[$5000][1289846] Medium CVE-2022-1137: Inappropriate implementation in Extensions. Reported by Thomas Orlita on 2022-01-22

[$2000][1246188] Medium CVE-2022-1138: Inappropriate implementation in Web Cursor. Reported by Alesandro Ortiz on 2021-09-03

[$TBD][1268541] Medium CVE-2022-1139: Inappropriate implementation in Background Fetch API. Reported by Maurice Dauer on 2021-11-10

[$TBD][1303253] Medium CVE-2022-1141: Use after free in File Manager. Reported by raven at KunLun lab on 2022-03-05

[$TBD][1303613] Medium CVE-2022-1142: Heap buffer overflow in WebUI. Reported by Leecraso and Guang Gong of 360 Alpha Lab on 2022-03-07

[$TBD][1303615] Medium CVE-2022-1143: Heap buffer overflow in WebUI. Reported by Leecraso and Guang Gong of 360 Alpha Lab on 2022-03-07

[$TBD][1304145] Medium CVE-2022-1144: Use after free in WebUI. Reported by Leecraso and Guang Gong of 360 Alpha Lab on 2022-03-08

[$TBD][1304545] Medium CVE-2022-1145: Use after free in Extensions. Reported by Yakun Zhang of Baidu Security on 2022-03-09

[$TBD][1290150] Low CVE-2022-1146: Inappropriate implementation in Resource Timing. Reported by Sohom Datta on 2022-01-23

We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.

As usual, our ongoing internal security work was responsible for a wide range of fixes:

[1311327] Various fixes from internal audits, fuzzing and other initiatives

Many of our security bugs are detected using AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, or AFL.

Interested in switching release channels? Find out how here. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.

Srinivas Sista
Google Chrome

Dev Channel Update for Desktop

Tuesday, March 29, 2022

The Dev channel has been updated to 101.0.4951.15 for Windows,Linux and MacA partial list of changes is available in the log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.

Prudhvikumar Bommana

Google Chrome

Chrome for iOS Update

Tuesday, March 29, 2022

Hi, everyone! We've just released Chrome 100 (100.0.4896.56) for iOS: it'll become available on App Store in the next few hours.This release includes stability and performance improvements. You can see a full list of the changes in the Git log. If you find a new issue, please let us know by filing a bug.Harry SoudersGoogle Chrome

Stable Channel Update for Chrome OS

Monday, March 28, 2022

If you find new issues, please let us know by vising our forum or filing a bug. Interested in switching channels? Find out how. You can submit feedback using 'Report an issue...' in the Chrome menu (3 vertical dots in the upper right corner of the browser).

Cole Brown

Google Chrome OS

The Stable channel is being updated to 99.0.4844.94 (Platform version: 14469.59.0) for most Chrome OS devices. This build contains a number of bug fixes and security updates. Systems will be receiving updates over the next several days.

If you find new issues, please let us know by vising our forum or filing a bug. Interested in switching channels? Find out how. You can submit feedback using 'Report an issue...' in the Chrome menu (3 vertical dots in the upper right corner of the browser).

Cole BrownGoogle Chrome OS

Beta Channel Update for Desktop

Monday, March 28, 2022

The Beta channel has been updated to 100.0.4896.60 for Mac,Windows and Linux.A full list of changes in this build is available in the log. Interested in switching release channels? Find out how here. If you find a new issues, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.
Srinivas Sista Google Chrome

Chrome for Android Update

Friday, March 25, 2022

Hi, everyone! We've just released Chrome 99 (99.0.4844.88) for Android: it'll become available on Google Play over the next few days.Git logfiling a bug
Ben Mason
Google Chrome

Extended Stable Channel Update for Desktop

Friday, March 25, 2022

Srinivas Sista

Google Chrome

The Extended Stable channel has been updated to 98.0.4758.141 for Windows and Mac which will roll out over the coming days/weeks. A full list of changes in this build is available in the log. Interested in switching release channels? Find out how here. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.

Srinivas Sista

Google Chrome

Stable Channel Update for Desktop

Friday, March 25, 2022

The Stable channel has been updated to 99.0.4844.84 for Windows, Mac and Linux which will roll out over the coming days/weeks. A full list of changes in this build is available in the log. Interested in switching release channels? Find out how here. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.
Security Fixes and RewardsNote: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.This update includes 1 security fix. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information.
[$TBD][1309225] High CVE-2022-1096: Type Confusion in V8. Reported by anonymous on 2022-03-23We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.Google is aware that an exploit for CVE-2022-1096 exists in the wild. Many of our security bugs are detected using AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, or AFL.
PrudhviKumar Bommana

Google Chrome

Chrome Beta for iOS Update

Friday, March 25, 2022

Hi, everyone! We've released Chrome Beta 101 (101.0.4951.8) for iOS: it'll become available on App Store in the next few days.You can see a partial list of the changes in the Git log. If you find a new issue, please let us know by filing a bug.Harry Souders
Google Chrome

Chrome Beta for Android Update

Thursday, March 24, 2022

Hi everyone! We've just released Chrome Beta 100 (100.0.4896.58) for Android: it's now available on Google Play.You can see a partial list of the changes in the Git log. For details on new features, check out the Chromium blog, and for details on web platform updates, check here.

If you find a new issue, please let us know by filing a bug.

Krishna Govind
Google Chrome

Beta Channel Update for Chrome OS

Thursday, March 24, 2022

Daniel Gagnon,
Google Chrome OS

The Beta channel is being updated to 100.0.4896.54 (Platform version: 14526.43.0) for most Chrome OS devices.If you find new issues, please let us know by visiting our forum or filing a bug. Interested in switching channels Find out how. You can submit feedback using ‘Report an issue...’ in the Chrome menu (3 vertical dots in the upper right corner of the browser).
Daniel Gagnon,
Google Chrome OS

Beta Channel Update for Desktop

Thursday, March 24, 2022

The Beta channel has been updated to 100.0.4896.56 for Mac,Windows and Linux.A full list of changes in this build is available in the log. Interested in switching release channels? Find out how here. If you find a new issues, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.
Srinivas Sista Google Chrome

Dev Channel Update for Chrome OS

Wednesday, March 23, 2022

Matt Nelson,
Google Chrome OS

The Dev channel is being updated to 101.0.4951.6 (Platform version: 14588.11.0) for most Chrome OS devices.
If you find new issues, please let us know by visiting our forum or filing a bug. Interested in switching channels Find out how. You can submit feedback using ‘Report an issue...’ in the Chrome menu (3 vertical dots in the upper right corner of the browser).

Matt Nelson,
Google Chrome OS

Dev Channel Update for Desktop

Wednesday, March 23, 2022

The Dev channel has been updated to 101.0.4951.7 for Windows,Linux and MacA partial list of changes is available in the log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.

Prudhvikumar Bommana

Google Chrome

Dev Channel Update for Chrome OS

Tuesday, March 22, 2022

Matt Nelson,

Google Chrome OS

The Dev channel is being updated to 101.0.4943.0 (Platform version: 14583.0.0) for most Chrome OS devices.
If you find new issues, please let us know by visiting our forum or filing a bug. Interested in switching channels Find out how. You can submit feedback using ‘Report an issue...’ in the Chrome menu (3 vertical dots in the upper right corner of the browser).

Matt Nelson,
Google Chrome OS

Stable Channel Update for Chrome OS

Tuesday, March 22, 2022

The Stable channel is being updated to 99.0.4844.86 (Platform version: 14469.58.0) for most Chrome OS devices.

If you find new issues, please let us know by visiting our forum or filing a bug. Interested in switching channels? Find out how. You can submit feedback using ‘Report an issue...’ in the Chrome menu (3 vertical dots in the upper right corner of the browser).

Cole Brown (on behalf of the Chrome OS Team)

Stable Channel Update for Desktop

Sunday, March 20, 2022

Google Chrome

The Stable channel has been updated to 99.0.4844.82 for Windows, Linux and 99.0.4844.83 for Mac which will roll out over the coming days/weeks. A full list of changes in this build is available in the log. Interested in switching release channels? Find out how here. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.Interested in switching release channels? Find out how here.

Prudhvikumar Bommana

Google Chrome

Dev Channel Update for Desktop

Friday, March 18, 2022

The Dev channel has been updated to 101.0.4947.0/.3 for Windows,Mac and 101.0.4947.0 for LinuxA partial list of changes is available in the log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.

Prudhvikumar Bommana

Google Chrome

Chrome Beta for iOS Update

Thursday, March 17, 2022

Hi, everyone! We've released Chrome Beta 100 (100.0.4896.46) for iOS: it'll become available on App Store in the next few days.You can see a partial list of the changes in the Git log. If you find a new issue, please let us know by filing a bug.Harry Souders
Google Chrome

Beta Channel Update for Chrome OS

Wednesday, March 16, 2022

Daniel Gagnon,
Google Chrome OS

The Beta channel is being updated to 100.0.4896.44 (Platform version: 14526.28.0) for most Chrome OS devices.If you find new issues, please let us know by visiting our forum or filing a bug. Interested in switching channels Find out how. You can submit feedback using ‘Report an issue...’ in the Chrome menu (3 vertical dots in the upper right corner of the browser).
Daniel Gagnon,
Google Chrome OS

Chrome Beta for Android Update

Wednesday, March 16, 2022

Hi everyone! We've just released Chrome Beta 100 (100.0.4896.46) for Android: it's now available on Google Play.Chrome Beta for Android UpdateYou can see a partial list of the changes in the Git log. For details on new features, check out the Chromium blog, and for details on web platform updates, check here.

If you find a new issue, please let us know by filing a bug.

Krishna Govind
Google Chrome

Beta Channel Update for Desktop

Wednesday, March 16, 2022

The Beta channel has been updated to 100.0.4896.45 for Mac and 100.0.4896.45 for Windows and Linux.A full list of changes in this build is available in the log. Interested in switching release channels? Find out how here. If you find a new issues, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.
Srinivas Sista Google Chrome

Dev Channel Update for Chrome OS

Tuesday, March 15, 2022

Matt Nelson,

Google Chrome OS

The Dev channel is being updated to 101.0.4937.0 (Platform version: 14574.0.0) for most Chrome OS devices.
If you find new issues, please let us know by visiting our forum or filing a bug. Interested in switching channels Find out how. You can submit feedback using ‘Report an issue...’ in the Chrome menu (3 vertical dots in the upper right corner of the browser).

Matt Nelson,
Google Chrome OS

Chrome for Android Update

Tuesday, March 15, 2022

Hi, everyone! We've just released Chrome 99 (99.0.4844.73) for Android: it'll become available on Google Play over the next few days.Git logfiling a bug
Ben Mason
Google Chrome

Extended Stable Channel Update for Desktop

Tuesday, March 15, 2022

Srinivas Sista

Google Chrome

The Extended Stable channel has been updated to 98.0.4758.132 for Windows and Mac which will roll out over the coming days/weeks. A full list of changes in this build is available in the log. Interested in switching release channels? Find out how here. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.

Srinivas Sista

Google Chrome

Stable Channel Update for Desktop

Tuesday, March 15, 2022

Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.

This update includes 11 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information.

[$NA][1299422] Critical CVE-2022-0971: Use after free in Blink Layout. Reported by Sergei Glazunov of Google Project Zero on 2022-02-21

[$NA][1301320] High CVE-2022-0972: Use after free in Extensions. Reported by Sergei Glazunov of Google Project Zero on 2022-02-28

[$15000][1297498] High CVE-2022-0973: Use after free in Safe Browsing. Reported by avaue and Buff3tts at S.S.L. on 2022-02-15

[$7000][1291986] High CVE-2022-0974 : Use after free in Splitscreen. Reported by @ginggilBesel on 2022-01-28

[$7000][1295411] High CVE-2022-0975: Use after free in ANGLE. Reported by SeongHwan Park (SeHwa) on 2022-02-09

[$7000][1296866] High CVE-2022-0976: Heap buffer overflow in GPU. Reported by Omair on 2022-02-13

[$3000][1299225] High CVE-2022-0977: Use after free in Browser UI. Reported by Khalil Zhani on 2022-02-20

[$TBD][1299264] High CVE-2022-0978: Use after free in ANGLE. Reported by Cassidy Kim of Amber Security Lab, OPPO Mobile Telecommunications Corp. Ltd. on 2022-02-20

[$TBD][1302644] High CVE-2022-0979: Use after free in Safe Browsing. Reported by anonymous on 2022-03-03

[$TBD][1302157] Medium CVE-2022-0980: Use after free in New Tab Page. Reported by Krace on 2022-03-02

We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.

As usual, our ongoing internal security work was responsible for a wide range of fixes:
[1305655] Various fixes from internal audits, fuzzing and other initiatives

Many of our security bugs are detected using AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, or AFL.

Interested in switching release channels? Find out how here. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.

Prudhvikumar Bommana

Google Chrome

The Stable channel has been updated to 99.0.4844.74 for Windows, Mac and Linux which will roll out over the coming days/weeks. A full list of changes in this build is available in the log. Interested in switching release channels? Find out how here. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.
Security Fixes and Rewards
Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.

This update includes 11 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information.

[$NA][1299422] Critical CVE-2022-0971: Use after free in Blink Layout. Reported by Sergei Glazunov of Google Project Zero on 2022-02-21

[$NA][1301320] High CVE-2022-0972: Use after free in Extensions. Reported by Sergei Glazunov of Google Project Zero on 2022-02-28

[$15000][1297498] High CVE-2022-0973: Use after free in Safe Browsing. Reported by avaue and Buff3tts at S.S.L. on 2022-02-15

[$7000][1291986] High CVE-2022-0974 : Use after free in Splitscreen. Reported by @ginggilBesel on 2022-01-28

[$7000][1295411] High CVE-2022-0975: Use after free in ANGLE. Reported by SeongHwan Park (SeHwa) on 2022-02-09

[$7000][1296866] High CVE-2022-0976: Heap buffer overflow in GPU. Reported by Omair on 2022-02-13

[$3000][1299225] High CVE-2022-0977: Use after free in Browser UI. Reported by Khalil Zhani on 2022-02-20

[$TBD][1299264] High CVE-2022-0978: Use after free in ANGLE. Reported by Cassidy Kim of Amber Security Lab, OPPO Mobile Telecommunications Corp. Ltd. on 2022-02-20

[$TBD][1302644] High CVE-2022-0979: Use after free in Safe Browsing. Reported by anonymous on 2022-03-03

[$TBD][1302157] Medium CVE-2022-0980: Use after free in New Tab Page. Reported by Krace on 2022-03-02

We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.

As usual, our ongoing internal security work was responsible for a wide range of fixes:
[1305655] Various fixes from internal audits, fuzzing and other initiatives

Many of our security bugs are detected using AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, or AFL.

Interested in switching release channels? Find out how here. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.

Prudhvikumar Bommana

Google Chrome

Long Term Support Channel Update

Tuesday, March 15, 2022

This update includes the following Security fixes:

1295786 High CVE-2022-0796 uaf in blink::MediaInspectorContextImpl::CullPlayers(blink::WebString const&)

1294097 High CVE-2022-0794 Security: Heap-use-after-free in NearbyShareAction::HandleKeyboardEvent

1281908 High CVE-2022-0797 Security: DeserializeFromMessage should validate the message header

1279531 Medium CVE-2022-0469 heap-use-after-free in media_router::CastMediaSinkService::StartMdnsDiscovery

1284584 High CVE-2022-0452 Security: UAF in safe_browsing::DownloadRequestMaker::Start

1276331 High CVE-2022-0301 Security: heap-buffer-overflow around blink::mojom::WidgetInputHandlerProxy::DispatchEvent

1267627 Medium CVE-2022-0114 Security: Web Serial - Out of bound read in SerialPortUnderlyingSink::WriteData().

1292271 Medium CVE-2022-0808 Security: heap-use-after-free on ash/wm/desks/desks_controller.cc (chromeOS)

1285449 Medium CVE-2022-0610 Security: inappropriate implementation of reportBadMessage in GamepadMonitor::GamepadStartPolling

1291728 High CVE-2022-0793 Security: heap-use-after-free in base::ObserverList::RemoveObserver

1286940 High CVE-2022-0605 Security: heap-use-after-free in ProfileImpl::IsSameOrParent

1296150 High CVE-2022-0609 Security: [0-day] Use-After-Free in UpdateAnimationTiming

1273397 High CVE-2022-0604 Security: Heap-buffer-overflow in tabgroup

Giuliana Pritchard

Google Chrome OS

LTS-96 has been updated in the LTS channel to 96.0.4664.202 (Platform Version: 14268.77.0) for most ChromeOS devices. Want to know more about Long-term Support? Click here.

This update includes the following Security fixes:
1295786 High CVE-2022-0796 uaf in blink::MediaInspectorContextImpl::CullPlayers(blink::WebString const&)
1294097 High CVE-2022-0794 Security: Heap-use-after-free in NearbyShareAction::HandleKeyboardEvent
1281908 High CVE-2022-0797 Security: DeserializeFromMessage should validate the message header
1279531 Medium CVE-2022-0469 heap-use-after-free in media_router::CastMediaSinkService::StartMdnsDiscovery
1284584 High CVE-2022-0452 Security: UAF in safe_browsing::DownloadRequestMaker::Start
1276331 High CVE-2022-0301 Security: heap-buffer-overflow around blink::mojom::WidgetInputHandlerProxy::DispatchEvent
1267627 Medium CVE-2022-0114 Security: Web Serial - Out of bound read in SerialPortUnderlyingSink::WriteData().
1292271 Medium CVE-2022-0808 Security: heap-use-after-free on ash/wm/desks/desks_controller.cc (chromeOS)
1285449 Medium CVE-2022-0610 Security: inappropriate implementation of reportBadMessage in GamepadMonitor::GamepadStartPolling
1291728 High CVE-2022-0793 Security: heap-use-after-free in base::ObserverList::RemoveObserver
1286940 High CVE-2022-0605 Security: heap-use-after-free in ProfileImpl::IsSameOrParent
1296150 High CVE-2022-0609 Security: [0-day] Use-After-Free in UpdateAnimationTiming
1273397 High CVE-2022-0604 Security: Heap-buffer-overflow in tabgroup

Giuliana Pritchard

Google Chrome OS

Chrome Releases

Chrome Beta for Android Update

Dev Channel Update for Desktop

Beta Channel Update for Desktop

Chrome Beta for iOS Update

Dev Channel Update for Chrome OS

Chrome for Android Update

Stable Channel Update for Desktop

Dev Channel Update for Desktop

Chrome for iOS Update

Stable Channel Update for Chrome OS

Beta Channel Update for Desktop

Chrome for Android Update

Extended Stable Channel Update for Desktop

Stable Channel Update for Desktop

Chrome Beta for iOS Update

Chrome Beta for Android Update

Beta Channel Update for Chrome OS

Beta Channel Update for Desktop

Dev Channel Update for Chrome OS

Dev Channel Update for Desktop

Dev Channel Update for Chrome OS

Stable Channel Update for Chrome OS

Stable Channel Update for Desktop

Dev Channel Update for Desktop

Chrome Beta for iOS Update

Beta Channel Update for Chrome OS

Chrome Beta for Android Update

Beta Channel Update for Desktop

Dev Channel Update for Chrome OS

Chrome for Android Update

Extended Stable Channel Update for Desktop

Stable Channel Update for Desktop

Long Term Support Channel Update

Labels

Archive