The impact of this issue announcement is high. Please act accordingly to rectify the issue, as stated below.
What you need to know:
The stable version of Google Chrome 85 was released inclusive of 20 security fixes, two of which rated as high risk.
According to Google, the details on the improvements in version 85 will be released once majority of the users are updated. More information on the multiple bug fixes that came with the latest update are available at https://chromereleases.googleblog.com/2020/08/stable-channel-update-for-desktop_25.html
Actions to be taken:
This will roll out via updates over the coming days/weeks. The latest Chrome iteration is rolling out to Windows, Mac and Linux users as version 85.0.4183.83.
What is the impact of not doing the actions?
Access to the details of the vulnerabilities curbed by version 85 are still kept restricted until majority of the users are updated with the fix.
The two high risk ratings are: CVE-2020-6558, an insufficient policy enforcement in iOS, and CVE-2020-6559, a use-after-free in the presentation API.