chrome security update

Microsoft has now published guidance for CVE-2026-5858, a critical heap buffer overflow in WebML affecting Google Chrome before version 147.0.7727.55. The flaw can be triggered by a crafted HTML page, which means a remote attacker could potentially achieve arbitrary code execution through...

Google’s April 2026 security disclosure for CVE-2026-5875 is a reminder that browser bugs do not need to be memory corruptions to be dangerous. The flaw is described as a policy bypass in Blink that allowed a remote attacker to carry out UI spoofing through a crafted HTML page, and Google has...

Google has identified a serious browser memory-corruption bug in Chromium’s GPU stack, tracked as CVE-2026-5272, and the fix landed in Chrome before version 146.0.7680.178. Microsoft’s Security Update Guide mirrors the issue for downstream visibility, describing it as a heap buffer overflow in...

The March 2026 Chrome security cycle has produced another reminder that browser graphics code remains a prime target, and CVE-2026-5277 sits squarely in that category. Microsoft’s Security Update Guide records the issue as an integer overflow in ANGLE affecting Google Chrome on Windows prior to...

Google’s latest Chrome security update closes CVE-2026-4445, a use-after-free vulnerability in WebRTC that affected Chrome builds prior to 146.0.7680.153 and could let a remote attacker trigger heap corruption with a crafted HTML page. The defect has been classified as High severity, which...

Google’s latest security advisory for CVE-2026-4460 is a reminder that even mature browser engines can still be tripped up by a single memory-safety flaw. The issue is an out-of-bounds read in Skia, the graphics library used by Chrome, and Google says it affected Chrome versions prior to...