Google Fixed Critical Chrome Flaw Found by Big Sleep AI

Google has issued a security patch for Google Chrome 139, addressing a high-severity vulnerability tracked as CVE-2025-9132. This critical flaw was discovered by Big Sleep AI, an AI agent developed by Google DeepMind and Project Zero, which is designed to automate the discovery of real-world software vulnerabilities.

The V8 JavaScript engine, which is the high-performance engine powering Google Chrome, contains a vulnerable out-of-bounds write issue that allows attackers to potentially execute arbitrary code. This vulnerability was discovered by Big Sleep AI, and Google has since released an update (Windows/macOS: 139.0.7258.138/.139, Linux: 139.0.7258.138) to patch the flaw.

While Google did not confirm whether the vulnerability is being exploited in attacks in the wild, users are urged to update their software as soon as possible to protect themselves from potential exploitation. The updated version of Chrome, 139, is rolling out to all users shortly, and it's essential that everyone takes this opportunity to stay secure.

It's worth noting that Google's proactive approach to addressing vulnerabilities like CVE-2025-9132 demonstrates its commitment to keeping users safe online. By leveraging AI-powered tools like Big Sleep AI, Google is able to identify and fix critical flaws before they can be exploited by malicious actors.

Stay Secure with the Latest Chrome Update

To ensure your device remains secure, make sure to update your Google Chrome browser to version 139 as soon as possible. You can check for updates in your browser settings or download the latest version directly from the official Chrome website.

Follow me on Twitter: @securityaffairs and Facebook and Mastodon for the latest security news and updates.