Google says it found the security flaw being exploited in the wild, so it's important to update as soon as possible. If you are installing Windows 10 on a PC running Windows XP or Windows Vista, or if you need to create installation media to install Windows 10 on a different PC, see Using the tool to create installation media (USB flash drive, DVD, or ISO file) to install Windows 10 on a different PC section below. It allows a malicious WebP image to cause a heap buffer overflow, which can potentially be used to take control of your computer. The security vulnerability (labelled as CVE-2023-4863) affects libwebp, one of the most common ways for applications to render WebP images. Vivaldi and Brave Brower are also now rolling out the fix. The security vulnerability also affects any browsers based on the Chromium project, so Microsoft just released Edge 1.81 to fix the same flaw. Otherwise, it should be automatically downloaded at some point in the coming days (if it hasn't already) and prompt you to restart the web browser. If you manually check for Chrome updates, the update will likely be found and installed. Google Chrome has now rolled out a patch for the security flaw in its Stable and Extended stable channels, starting with version 1.187 for Mac and Linux and version versions 1.187/.188 on Windows.
