Google has released one final update for Chrome 140 before it gets replaced by Chrome 141. Google plans to release Chrome 141 at the beginning of October.

The developers have fixed several vulnerabilities in Chrome versions 140.0.7339.207/208 for Windows and macOS and 140.0.7339.207 for Linux. According to Google, none of these vulnerabilities have been exploited for attacks in the wild.

In the Chrome Releases blog post , Srinivas Sista lists the three fixed vulnerabilities, one of which was discovered by an external security researcher and reported to Google.

Security vulnerabilities fixed

Google classifies vulnerability CVE-2025-10890 as high risk, which is a side-channel information leak in the V8 JavaScript engine. The other two vulnerabilities (CVE-2025-10891 and CVE-2025-10892)

See Full Page