Google Chrome 111 update fixes a massive number of vulnerabilities
Google Chrome 111 is now available for all supported desktop and mobile operating systems. The new version of Google's browser is a security update that includes 40 different fixes for vulnerabilities in Google Chrome. It also introduces support for Azure AD single sign-on (SSO) and some other features.
Google is rolling out the update for all supported platforms over the course of the coming weeks. Most Chrome users may want to speed up the installation of the update, which they can on desktop platforms.
Select Menu > Help > About Google Chrome, or load chrome://settings/help directly in the address bar to open the Help page. Chrome displays the current version of the browser on the page, runs a check for updates, and downloads & installs any update that it finds. A restart of the web browser is required to complete the process.
The following Chrome version should be displayed on the page after the installation of the security update:
- Chrome for Mac 111.0.5563.64
- Chrome for Linux 111.0.5563.64
- Chrome for Windows 111.0.5563.64 or 111.0.5563.65
- Chrome Extended for Windows and Mac: 110.0.5481.192
- Chrome for Android: 111.0.5563.57 or 111.0.5563.58
Google Chrome 111: vulnerabilities
Google Chrome 111 is a security update first and foremost. It patches 40 different vulnerabilities in Google's browser on all platforms. Google lists only the security issues that were reported by third-parties in its announcements. The maximum severity is high, and includes vulnerabilities in CSS, V8, the Developer Tools, and crash reporting.
The company makes no mention of exploits in the wild, which means that it is not aware of any active exploits targeting Chrome installations already.
Chrome 111: other changes
Google Chrome 111 is also a new stable version of the web browser. As such, it includes several under-the-hood changes and other changes. Most of these changes are relevant to developers only; a list of them are available on the Chrome Status website.
Google adds more privacy sandbox functionality into Chrome 111. Users will see an updated user experience that shows a confirmation dialog and may direct users to settings pages.
Google highlights a change for Chrome on Android and Linux. It moves the System DNS resolution out of the network process, which is sandboxed, to the unsandboxed browser process. Google notes that this is necessary because "system DNS resolution cannot run while sandboxed on these platforms".
Chrome 111 adds support for Azure AD Single Sign-On (SSO). It enables automatic sign-ins into Microsoft identity providers using Windows account information. The feature is disabled by default, but may be enabled using the CloudAPAuthEnabled policy. Google notes that the feature is only available on Windows 10 and 11 devices.
Chrome 111 on iOS supports the Web Speech API for speech recognition. The speech-to-text conversion is handled by Apple servers according to Google.
Google Chrome 111 is a big security update that users should install immediately to protect the browser against potential exploits.
Now You: do you run Chrome on your devices?
The future of all kind of browsers is increasing security to the maximum affordable and also apply big efforts in bug fixing strategies instead ofering new “features” that meant nothing to the 90% of the users. Also it’s widely known that the first that Chrome is the first one to apply the fixes and security patches and then the rest of all Chromium based browsers follow its steps. I dislike in so many ways the Chrome browser, however it’s the best one to work with electronic digital identification cards (i.e. eIDs) with no problem at all, it never fails. So I have it installed for such this only purpose. Even Edge, that inmo is the best Cromium based browser, gives sometimes occasionally issues in this working area. Firefox needs some extra configuration to work with eIDs and it gives some issues too with error messages about some token lost or something, I can’t remember now. Thanks for the article!
I use Chrome for a work related things.
There’s a new tab hover preview card that was introduced Chrome 111, but it doesn’t appear to have a way to disable it (settings or flags). It’s very annoying, and just makes me glad I’m in the process of completely switching to Firefox.
If anybody has seen news about it or knows a way to disable that, it would be greatly appreciated.
As further as I have read, the tab hover feature is intended to inform the user about the memory consumption of each tab, feature that will be available in Chrome 112. I have also searched for a way to disable it however it seems that all the former related flags have dissapeared.
Yes, this works–thanks to @LoVega/Reddit
1. The only way currently is to temporarily unexpire the M110 flags (Enable chrome://flags/#temporary-unexpire-flags-m110), relaunch
2. And then set the Tab Hover Images to disabled again. Note that this will be gone in Version 113.
So two steps–Enable-Relaunch-Search chrome://flags for Tabs Hover Images-Disable.
Temporary . . .
Interesting to read that there are so many bug (security) fixes. Don’t they test software anymore before it is rolled out?
How come the developers have not noticed that in the previous version?
@Klaus, hackers and bad people do bad things 24/7 and browsers are always one step behind.
Chromium has a market share of 80%, the only other widely used browser being Safari. Browsers, by definition, interact with the Internet. This explains it for the most part.
And you can test as much as you want, we are talking about a codebase the size and complexity of an operating system here.
Indeed, Chromium has a market share of 80% which means any vulnerability is made public, while on Firefox it is hidden by the woke media. Chrome has been proven to be far more secure than Gecko in reality. In the words of brother Iron Heart, anyone who believes Firefox has less vulnerabilities is ignorant or stupid. It has been declared and cleared by Martin himself.
I was using Chrome, but just dumped it because it usually bloats up to a ridiculous level after a couple weeks, slowing down beyond acceptable. Like Edge. But its even worse because it forces it’s sales pitch on you, being embedded in the system. On Brave now. Meh.
Google Removed the Software Reporter Tool from Chrome 111!!! At last!
Can we have more details about this release “Support for Azure AD Single Sign-On” ?
How does it work ? This release works with a profile configured in chrome browser ? Microsoft credential will be stored at google cloud ?