Try out brand new Chrome Browser features in a pre-release build. Choose this option if you want to install the beta version of Chrome Browser to test its functionality and performance in your environment. Get the 64-bit and 32-bit beta bundles.
- Download Google Chrome Portable. Chrome combines a minimal design with sophisticated technology to make the web faster, safer, and easier in a portable package. Reported by David Erceg on 2019.
- Google Chrome is a fast, simple, and secure web browser, built for the modern web. Speed Chrome is designed to be fast in every possible way. It's quick to start up from your desktop, loads web pages in a snap, and runs complex web applications lightning fast.
- Google Chrome is renowned for exceptional speed. Executing actions fast, users waste no time getting the search results they need. One of the greatest things about Google Chrome is that it's like you're not using a web-browser at all. It's visually appealing, while being very easy to handle.
- Chrome version check using Apps and Features Windows Update Google Chrome to the latest version Using Google Update. To check for new updates of the browser, follow the steps below: Open Google Chrome; Click on the vertical three dots at the top right of the window. This will open the Chrome menu. Under the menu, go to Help – About Google.
As featured in:
Google Chrome is a fast, simple, and secure web browser, built for the modern web. If you're just getting started with Chrome or want to improve it, we recommend checking out our Chrome optimization guide.
Speed
Chrome is designed to be fast in every possible way: It's quick to start up from your desktop, loads web pages in a snap, and runs complex web applications fast. Learn more about Chrome and speed.
Simplicity
Chrome's browser window is streamlined, clean and simple. New privacy browser. Chrome also includes features that are designed for efficiency and ease of use. For example, you can search and navigate from the same box, and arrange tabs however you wish — quickly and easily.
Security
Chrome is designed to keep you safer and more secure on the web with built-in malware and phishing protection, autoupdates to make sure the browser is up-to-date with the latest security updates, and more. Learn more about Chrome's security features.
And more features
Chrome has many useful features built in, including extensions, translation in the browser, themes, and more. Learn more about Chrome's newest and most-loved features.
What's New:
The Chrome team is delighted to announce the promotion of Chrome 84 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks.
Chrome 84.0.4147.89 contains a number of fixes and improvements -- a list of changes is available in the log. Watch out for upcoming Chrome and Chromiumblog posts about new features and big efforts delivered in 84
Security Fixes and Rewards
Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven't yet fixed.
This update includes 38 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information.
- [$TBD][1103195] Critical CVE-2020-6510: Heap buffer overflow in background fetch. Reported by Leecraso and Guang Gong of 360 Alpha Lab working with 360 BugCloud on 2020-07-08
- [$5000][1074317] High CVE-2020-6511: Side-channel information leakage in content security policy. Reported by Mikhail Oblozhikhin on 2020-04-24
- [$5000][1084820] High CVE-2020-6512: Type Confusion in V8. Reported by nocma, leogan, cheneyxu of WeChat Open Platform Security Team on 2020-05-20
- [$2000][1091404] High CVE-2020-6513: Heap buffer overflow in PDFium. Reported by Aleksandar Nikolic of Cisco Talos on 2020-06-04
- [$TBD][1076703] High CVE-2020-6514: Inappropriate implementation in WebRTC. Reported by Natalie Silvanovich of Google Project Zero on 2020-04-30
- [$TBD][1082755] High CVE-2020-6515: Use after free in tab strip. Reported by DDV_UA on 2020-05-14
- [$TBD][1092449] High CVE-2020-6516: Policy bypass in CORS. Reported by Yongke Wang of Tencent's Xuanwu Lab (xlab.tencent.com) on 2020-06-08
- [$TBD][1095560] High CVE-2020-6517: Heap buffer overflow in history. Reported by ZeKai Wu (@hellowuzekai) of Tencent Security Xuanwu Lab on 2020-06-16
- [$3000][986051] Medium CVE-2020-6518: Use after free in developer tools. Reported by David Erceg on 2019-07-20
- [$3000][1064676] Medium CVE-2020-6519: Policy bypass in CSP. Reported by Gal Weizman (@WeizmanGal) of PerimeterX on 2020-03-25
- [$1000][1092274] Medium CVE-2020-6520: Heap buffer overflow in Skia. Reported by Zhen Zhou of NSFOCUS Security Team on 2020-06-08
- [$500][1075734] Medium CVE-2020-6521: Side-channel information leakage in autofill. Reported by Xu Lin (University of Illinois at Chicago), Panagiotis Ilia (University of Illinois at Chicago), Jason Polakis (University of Illinois at Chicago) on 2020-04-27
- [$TBD][1052093] Medium CVE-2020-6522: Inappropriate implementation in external protocol handlers. Reported by Eric Lawrence of Microsoft on 2020-02-13
- [$N/A][1080481] Medium CVE-2020-6523: Out of bounds write in Skia. Reported by Liu Wei and Wu Zekai of Tencent Security Xuanwu Lab on 2020-05-08
- [$N/A][1081722] Medium CVE-2020-6524: Heap buffer overflow in WebAudio. Reported by Sung Ta (@Mipu94) of SEFCOM Lab, Arizona State University on 2020-05-12
- [$N/A][1091670] Medium CVE-2020-6525: Heap buffer overflow in Skia. Reported by Zhen Zhou of NSFOCUS Security Team on 2020-06-05
- [$1000][1074340] Low CVE-2020-6526: Inappropriate implementation in iframe sandbox. Reported by Jonathan Kingston on 2020-04-24
- [$500][992698] Low CVE-2020-6527: Insufficient policy enforcement in CSP. Reported by Zhong Zhaochen of andsecurity.cn on 2019-08-10
- [$500][1063690] Low CVE-2020-6528: Incorrect security UI in basic auth. Reported by Rayyan Bijoora on 2020-03-22
- [$N/A][978779] Low CVE-2020-6529: Inappropriate implementation in WebRTC. Reported by kaustubhvats7 on 2019-06-26
- [$N/A][1016278] Low CVE-2020-6530: Out of bounds memory access in developer tools. Reported by myvyang on 2019-10-21
- [$TBD][1042986] Low CVE-2020-6531: Side-channel information leakage in scroll to text. Reported by Jun Kokatsu, Microsoft Browser Vulnerability Research on 2020-01-17
- [$N/A][1069964] Low CVE-2020-6533: Type Confusion in V8. Reported by Avihay Cohen @ SeraphicAlgorithms on 2020-04-11
- [$N/A][1072412] Low CVE-2020-6534: Heap buffer overflow in WebRTC. Reported by Anonymous on 2020-04-20
- [$TBD][1073409] Low CVE-2020-6535: Insufficient data validation in WebUI. Reported by Jun Kokatsu, Microsoft Browser Vulnerability Research on 2020-04-22
- [$TBD][1080934] Low CVE-2020-6536: Incorrect security UI in PWAs. Reported by Zhiyang Zeng of Tencent security platform department on 2020-05-09
We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.
As usual, our ongoing internal security work was responsible for a wide range of fixes:
- [1105224] Various fixes from internal audits, fuzzing and other initiatives
Many of our security bugs are detected using AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, or AFL.
Recent Google Chrome Portable news
- Windows 7 will support the browser until at least 2022
- 909 votesProtect your privacy. Defend yourself against network surveillance and traffic analysis. Tor is free software and an open network that helps you defend against surveillance that threatens personal freedom and privacy.
- Freeware
- Windows/macOS/Linux
- 388 votesChrome combines a minimal design with sophisticated technology to make the web faster, safer, and easier.
- Freeware
- Windows
- 52 votesFast and versatile Internet Browser based on Chromium, infused with Comodo's unparalleled level of security.
- Freeware
- Windows
Popular apps in Browsers
Google today launched Chrome 77 for Windows, Mac, Linux, Android, and iOS. The release includes new performance metrics, form capabilities, and Origin Trials. You can update to the latest version now using Chrome's built-in updater or download it directly from google.com/chrome.
With over 1 billion users, Chrome is both a browser and a major platform that web developers must consider. In fact, with Chrome's regular additions and changes, developers often have to stay on top of everything available — as well as what has been deprecated or removed. Chrome 77, for example, removes credit card issuer networks as payment method names (like 'amex,' 'mastercard,' and 'visa').
Performance metrics, forms, and Origin Trials
Google is obsessed with speeding up the web, and Chrome is its main tool for doing so. Chrome 77 introduces two new performance metrics to help developers measure how quickly the main content of a web page loads and is made visible to users.
The first addition is Largest Contentful Paint, which attempts to provide more meaningful data by using the largest content element as a proxy for when the main content of the page is likely visible to users.
The second is the PerformanceEventTiming interface, which provides timing information about the latency of the first discrete user interaction. Specifically, Chrome measures for a key down, mouse down, click, or the combination of pointer down and pointer up. This is a subset of the EventTiming API but can be exposed in advance to help measure and optimize responsiveness.
Chrome 77 has also added two new features that support custom form controls. The formdata
event, which is added to form element, lets sites use JavaScript instead of hidden elements to add data to a form. The passed event includes a FormData
object containing the data being submitted, which can now be modified.
Lastly, Chrome 77 also introduces Origin Trials that let you to try new features and provide feedback on usability, practicality, and effectiveness to the web standards community. The first new feature is the Contact Picker API, an on-demand picker that lets users select entries from their contact list and share limited details of the selected entries with a website.
Enterprise features
Chrome 77 includes site isolation improvements to protect cross-site data, such as cookies and HTTP resources, in attacker-controlled websites. Site isolation will also now be enabled on some Android devices for sites where mobile users enter passwords.
IT admins can now define the URL of an XML file that will never trigger a browser switch using the BrowserSwitcherExternalGreylistUrl policy. There's also a new chrome://browser-switch/internals page for verifying that Legacy Browser Support rules are being followed.
Chrome 77 also has an updated first-run experience to set up new users with popular Google services (Gmail, YouTube, Google Maps, Google News, and Google Translate). It also prompts you to set Chrome as the default browser. You can disable the new flow with the PromotionalTabsEnabled policy.
The new version also lets you launch guest browsing by default using the --guest
command line flag or the new BrowserGuestModeEnforced policy. With guest browsing, browsing activity is not written to the disk and does not persist between browser sessions.
Android and iOS
Chrome 77 for Android is rolling out slowly on Google Play, but the full changelog isn't up yet.
- [1105224] Various fixes from internal audits, fuzzing and other initiatives
Many of our security bugs are detected using AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, or AFL.
Recent Google Chrome Portable news
- Windows 7 will support the browser until at least 2022
- 909 votesProtect your privacy. Defend yourself against network surveillance and traffic analysis. Tor is free software and an open network that helps you defend against surveillance that threatens personal freedom and privacy.
- Freeware
- Windows/macOS/Linux
- 388 votesChrome combines a minimal design with sophisticated technology to make the web faster, safer, and easier.
- Freeware
- Windows
- 52 votesFast and versatile Internet Browser based on Chromium, infused with Comodo's unparalleled level of security.
- Freeware
- Windows
Popular apps in Browsers
Google today launched Chrome 77 for Windows, Mac, Linux, Android, and iOS. The release includes new performance metrics, form capabilities, and Origin Trials. You can update to the latest version now using Chrome's built-in updater or download it directly from google.com/chrome.
With over 1 billion users, Chrome is both a browser and a major platform that web developers must consider. In fact, with Chrome's regular additions and changes, developers often have to stay on top of everything available — as well as what has been deprecated or removed. Chrome 77, for example, removes credit card issuer networks as payment method names (like 'amex,' 'mastercard,' and 'visa').
Performance metrics, forms, and Origin Trials
Google is obsessed with speeding up the web, and Chrome is its main tool for doing so. Chrome 77 introduces two new performance metrics to help developers measure how quickly the main content of a web page loads and is made visible to users.
The first addition is Largest Contentful Paint, which attempts to provide more meaningful data by using the largest content element as a proxy for when the main content of the page is likely visible to users.
The second is the PerformanceEventTiming interface, which provides timing information about the latency of the first discrete user interaction. Specifically, Chrome measures for a key down, mouse down, click, or the combination of pointer down and pointer up. This is a subset of the EventTiming API but can be exposed in advance to help measure and optimize responsiveness.
Chrome 77 has also added two new features that support custom form controls. The formdata
event, which is added to form element, lets sites use JavaScript instead of hidden elements to add data to a form. The passed event includes a FormData
object containing the data being submitted, which can now be modified.
Lastly, Chrome 77 also introduces Origin Trials that let you to try new features and provide feedback on usability, practicality, and effectiveness to the web standards community. The first new feature is the Contact Picker API, an on-demand picker that lets users select entries from their contact list and share limited details of the selected entries with a website.
Enterprise features
Chrome 77 includes site isolation improvements to protect cross-site data, such as cookies and HTTP resources, in attacker-controlled websites. Site isolation will also now be enabled on some Android devices for sites where mobile users enter passwords.
IT admins can now define the URL of an XML file that will never trigger a browser switch using the BrowserSwitcherExternalGreylistUrl policy. There's also a new chrome://browser-switch/internals page for verifying that Legacy Browser Support rules are being followed.
Chrome 77 also has an updated first-run experience to set up new users with popular Google services (Gmail, YouTube, Google Maps, Google News, and Google Translate). It also prompts you to set Chrome as the default browser. You can disable the new flow with the PromotionalTabsEnabled policy.
The new version also lets you launch guest browsing by default using the --guest
command line flag or the new BrowserGuestModeEnforced policy. With guest browsing, browsing activity is not written to the disk and does not persist between browser sessions.
Android and iOS
Chrome 77 for Android is rolling out slowly on Google Play, but the full changelog isn't up yet.
Chrome 77 for iOS is rolling out on Apple's App Store. It includes four improvements:
- A new language settings page, giving you more control over which languages Chrome offers translations for.
- You can clear your browsing data from a specific range of time, like the past hour or past day.
- Omnibox suggestions are easier to read with added thumbnails and icons.
- Easily close tabs that are maliciously showing JavaScript dialogues.
Ensuring only languages you don't understand are translated should be handy for polyglots. For everyone else, there's more granular controls for clearing browser data.
Security fixes
Chrome 77 implements 52 security fixes. The following were found by external researchers:
- [$TBD][999311] Critical CVE-2019-5870: Use-after-free in media. Reported by Guang Gong of Alpha Team, Qihoo 360 on 2019-08-29
- [$7500][990570] High CVE-2019-5871: Heap overflow in Skia. Reported by Anonymous on 2019-08-03
- [$3000][981492] High CVE-2019-5872: Use-after-free in Mojo. Reported by Zhe Jin(金哲),Luyao Liu(刘路遥) from Chengdu Security Response Center of Qihoo 360 on 2019-07-05
- [$3000][989497] High CVE-2019-5873: URL bar spoofing on iOS. Reported by Khalil Zhani on 2019-07-31
- [$3000][989797] High CVE-2019-5874: External URIs may trigger other browsers. Reported by James Lee (@Windowsrcer) on 2019-08-01
- [$2000][979443] High CVE-2019-5875: URL bar spoof via download redirect. Reported by Khalil Zhani on 2019-06-28
- [$TBD][997190] High CVE-2019-5876: Use-after-free in media. Reported by Man Yue Mo of Semmle Security Research Team on 2019-08-23
- [$TBD][999310] High CVE-2019-5877: Out-of-bounds access in V8. Reported by Guang Gong of Alpha Team, Qihoo 360 on 2019-08-29
- [$TBD][1000217] High CVE-2019-5878: Use-after-free in V8. Reported by Guang Gong of Alpha Team, Qihoo 360 on 2019-09-03
- [$3000][986043] Medium CVE-2019-5879: Extension can bypass same origin policy. Reported by Jinseo Kim on 2019-07-20
- [$2000][831725] Medium CVE-2019-5880: SameSite cookie bypass. Reported by Jun Kokatsu (@shhnjk) on 2018-04-11
- [$2000][980816] Medium CVE-2019-5881: Arbitrary read in SwiftShader. Reported by Zhe Jin(金哲),Luyao Liu(刘路遥) from Chengdu Security Response Center of Qihoo 360 on 2019-07-03
- [$1000][868846] Medium CVE-2019-13659: URL spoof. Reported by Lnyas Zhang on 2018-07-30
- [$1000][882363] Medium CVE-2019-13660: Full screen notification overlap. Reported by Wenxu Wu (@ma7h1as) of Tencent Security Xuanwu Lab on 2018-09-10
- [$1000][882812] Medium CVE-2019-13661: Full screen notification spoof. Reported by Wenxu Wu (@ma7h1as) of Tencent Security Xuanwu Lab on 2018-09-11
- [$1000][967780] Medium CVE-2019-13662: CSP bypass. Reported by David Erceg on 2019-05-28
- [$500][863661] Medium CVE-2019-13663: IDN spoof. Reported by Lnyas Zhang on 2018-07-14
- [$500][915538] Medium CVE-2019-13664: CSRF bypass. Reported by thomas 'zemnmez' shadwell on 2018-12-16
- [$500][959640] Medium CVE-2019-13665: Multiple file download protection bypass. Reported by Jun Kokatsu, Microsoft Browser Vulnerability Research on 2019-05-05
- [$500][960305] Medium CVE-2019-13666: Side channel using storage size estimate. Reported by Tom Van Goethem from imec-DistriNet, KU Leuven on 2019-05-07
- [$500][973056] Medium CVE-2019-13667: URI bar spoof when using external app URIs. Reported by Khalil Zhani on 2019-06-11
- [$500][986393] Medium CVE-2019-13668: Global window leak via console. Reported by David Erceg on 2019-07-22
- [$N/A][968451] Medium CVE-2019-13669: HTTP authentication spoof. Reported by Khalil Zhani on 2019-05-30
- [$N/A][980891] Medium CVE-2019-13670: V8 memory corruption in regex. Reported by Guang Gong of Alpha Team, Qihoo 360 on 2019-07-03
- [$TBD][696454] Medium CVE-2019-13671: Dialog box fails to show origin. Reported by xisigr of Tencent's Xuanwu Lab on 2017-02-27
- [$TBD][997925] Medium CVE-2019-13673: Cross-origin information leak using devtools. Reported by David Erceg on 2019-08-26
- [$500][896533] Low CVE-2019-13674: IDN spoofing. Reported by Khalil Zhani on 2018-10-18
- [$500][929578] Low CVE-2019-13675: Extensions can be disabled by trailing slash. Reported by Jun Kokatsu, Microsoft Browser Vulnerability Research on 2019-02-07
- [$TBD][875178] Low CVE-2019-13676: Google URI shown for certificate warning. Reported by Wenxu Wu (@ma7h1as) of Tencent Security Xuanwu Lab on 2018-08-17
- [$TBD][939108] Low CVE-2019-13677: Chrome web store origin needs to be isolated. Reported by Jun Kokatsu, Microsoft Browser Vulnerability Research on 2019-03-06
- [$TBD][946633] Low CVE-2019-13678: Download dialog spoofing. Reported by Ronni Skansing on 2019-03-27
- [$TBD][968914] Low CVE-2019-13679: User gesture needed for printing. Reported by Conrad Irwin, Superhuman on 2019-05-31
- [$TBD][969684] Low CVE-2019-13680: IP address spoofing to servers. Reported by Thijs Alkemade from Computest on 2019-06-03
- [$TBD][970378] Low CVE-2019-13681: Bypass on download restrictions. Reported by David Erceg on 2019-06-04
- [$TBD][971917] Low CVE-2019-13682: Site isolation bypass. Reported by Jun Kokatsu, Microsoft Browser Vulnerability Research on 2019-06-07
- [$TBD][987502] Low CVE-2019-13683: Exceptions leaked by devtools. Reported by David Erceg on 2019-07-25
- [1002279] Various fixes from internal audits, fuzzing and other initiatives
Google thus spent at least $33,500 in bug bounties for this release. As always, the security fixes alone should be enough incentive for you to upgrade.
Developer features
Chrome 77 also has an updated V8 JavaScript engine. Version 7.7 includes lazy feedback allocaiton, scalable WebAssembly background compilation, stack trace improvements, and new JavaScript language features. Check out the full changelog for more information.
Other developer features in this release include:
- Enter Key Hint: The
enterkeyhint
content attribute is an enumerated attribute forelements that specifies what action label (or icon) to present as the enter key on virtual keyboards. This allows authors to customize the presentation of the enter key to make it more helpful for users. The attribute takes one of
enter
,done
,go
,next
,previous
,search
, orsend
. - Feature Policy Control over Document.domain: The document-domain policy governs access to document.domain. It is enabled by default, and, if disabled, attempting to set
document.domain
will throw an error. - Layout Instability Monitoring: Adds the
LayoutShift
interface to the Performance API, allowing developers to monitor changes to a DOM element's on-screen position. - Limit the 'referer' Header's Length to 4kB: Strips the
referer
header down to an origin when it's size exceeds 4kB. - Limit registerProtocolHandler() url Argument to http/https: The
registerProtocolHandler()
now only accepts URLs with http or https schemas. - New Features for Intl.NumberFormat: This change improves
Intl.NumberFormat
by adding support for measurement units, currency and sign display policies, and scientific and compact notation. - Overscroll Behavior Logical Longhands: Adds CSS
flow-relative
properties for controlling overscroll behavior through logical dimensions.flow-relative
properties are those that are interpreted relative to the flow of content. The new properties areoverscroll-behavior-inline
andoverscroll-behavior-block
. - PerformanceObserverInit Buffered Flag: Adds a
buffered
flag toobserver.observe()
so thatPerformanceObserver
can receive entries created before the call is executed. - RTCPeerConnection.onicecandidateerror adds the
incecandidateerror
event which provides detailed information about WebRTC ICE candidate gathering failures, including the ones defined by STUN (RFC5389) and TURN (RFC5766). - RTCPeerConnection.restartIce() adds a method for triggering an ICE restart which causes a WebRTC connection to try to reconnect. This feature is already available in Chrome by passing the
iceRestart
argument tocreateOffer()
.restartIce()
is a version of this method that works regardless ofsignalingState
. - Preserve Request Priorities through Service Worker: Preserves a request's original priority when it passes through a service worker. Previously, all requests going through a service worker would get 'High' priority.
- Service Workers Support Basic HTTP Authentication: Displays HTTP authentication dialog boxes even if the request was from a service worker. This shows the native login dialog shown when an HTTP 401 response is received.
- Stop Action for Media Sessions: Adds
stop
as aMediaSessionAction
for calls toMediaSession.setActionHandler()
. An action is an event tied specifically to a common media function such as pause or play. Thestop
action handler is called when the site should stop the playback and clear the state if appropriate. - Web Payments: Throw a TypeError on Invalid 'basic-card' Data. The
PaymentRequest
constructor now throws aTypeError
when invalidsupportedNetworks
orsupportedTypes
are specified for basic card payment.
For a full rundown of what's new, check out the Chrome 77 milestone hotlist.
Google releases a new version of its browser every six weeks or so. Chrome 78 will arrive by the end of October.
VentureBeat
VentureBeat's mission is to be a digital townsquare for technical decision makers to gain knowledge about transformative technology and transact. Our site delivers essential information on data technologies and strategies to guide you as you lead your organizations. We invite you to become a member of our community, to access:Descarca Chrome 2019
- up-to-date information on the subjects of interest to you,
- our newsletters
- gated thought-leader content and discounted access to our prized events, such as Transform
- networking features, and more.