Why isn't Brave 1.58 with the Chromium vulnerability fix in the play store yet?


My apologies if this is a duplicate, but I’ve searched for many days and have been waiting for the latest Brave Browser for Android as it has been updated to Chromium 117. It includes a fix for a vulnerability in the Webp image processing library, for a significant exploit.

I can see that according to https://brave-browser-downloads.s3.brave.com that Brave 1.58 should be available from the play store (or perhaps that just means it’s been submitted to the play store) but my Pixel 6 (Android 13) still only has Brave 1.57.62, Chromium 116.0.5845.180 available.

Given that this vulnerability was patched in chromium near the start of the month, I was expecting a Brave update some time ago.

Thank you

Further research, looks like I might be wrong and this was patched in the version of Chromium I mentioned above, before it was widely announced.

EDIT: No, the version of Chromium in Brave seems to be slightly older (116.0.5845.180 in Brave vs 116.0.5845.187 here)
Can anyone confirm if Brave on Android is still vulnerable please?

From Monday, September 11th:

Google is aware that an exploit for CVE-2023-4863 exists in the wild.

By running Brave we put complete trust in you. This also includes that you’re able to patch vulnerabilities quickly please!


They had already released it. It’s playstore which is lagging behind. Can see at

Thank you for that.

I just checked the play store and have been able to get Brave 1.58.131, Chromium 117.0.5938.92 just now.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.