chromium

Google's work on making Chrome feel faster has quietly returned to an old idea with a modern twist: the browser is now experimenting with using simple mouse hovers as a signal to prepare pages before you click, and it has added a lower-level "render boost" that gives active page loads more...

Chromium developers have closed a high‑severity upstream bug — tracked as CVE‑2025‑10201 — that the Chromium project describes as an “inappropriate implementation in Mojo” which could be abused, via a crafted HTML page, to bypass Chrome’s site‑isolation protections on Android, Linux and...

A newly assigned Chromium vulnerability, CVE-2025-10200, is a use‑after‑free flaw in the ServiceWorker implementation that Google patched in its September stable updates; the bug allows a remote attacker, by luring a user to a crafted page, to trigger heap corruption and potentially achieve...

Microsoft has quietly moved a set of EdgeHTML-era web components onto Windows’ official deprecation list, marking the next step in a long shift away from platform-specific web integration toward Chromium-based runtimes and standards-based Progressive Web Apps. This change — which names Legacy...

Google’s Chrome is quietly treating copy-and-paste as a first‑class privacy risk: Canary builds now show Safety Check automatically removing clipboard permissions from sites you haven’t visited recently, surface a clear “Removed permissions for [x] sites” notice in the menu, and give users a...

Title: CVE-2025-53791 — What Windows admins need to know about the Microsoft Edge (Chromium) “security feature bypass” (as of September 5, 2025) Summary (short) CVE-2025-53791 is tracked by Microsoft as a “Security Feature Bypass” in Microsoft Edge (Chromium‑based). Microsoft’s advisory...

Chrome’s September security update closes a high-severity use-after-free vulnerability in the V8 JavaScript engine — tracked as CVE-2025-9864 — that could allow an attacker to corrupt memory and potentially achieve remote code execution through a crafted web page, and administrators of...

Google's Chromium project has logged a serious security issue — tracked as CVE-2025-9866 — describing an inappropriate implementation in Extensions that can be weaponized to bypass Content Security Policy (CSP) via a crafted HTML page; Google has issued a Chrome stable update to remediate the...

Google's Chromium team has fixed a medium-severity UI spoofing flaw—tracked as CVE-2025-9865—that existed in the browser's Toolbar implementation and could allow domain spoofing on Android when a user performed specific UI gestures on crafted pages. Background Chromium's September 2025 security...

Google and the Chromium project have patched CVE-2025-9867, a medium-severity inappropriate implementation bug in the Downloads component that can be abused for UI spoofing on Chrome for Android, and users should update their mobile and desktop Chromium-based browsers immediately to eliminate...

Microsoft Edge Canary for Android now includes an experimental flag that enables background video playback — a simple toggle that, in early tests, lets YouTube audio continue when you switch apps, change tabs, or lock your phone, without requiring a YouTube Premium subscription...

Linux Lite 7.6 arrives as a pragmatic, low-friction alternative for users tired of Windows 11’s hardware demands—especially those running older laptops and desktops who want a familiar, lightweight desktop with current applications and clearer documentation. Background / Overview Linux Lite has...

Chromium security teams patched a critical use‑after‑free vulnerability in the ANGLE graphics translation layer tracked as CVE‑2025‑9478, and every Windows and enterprise administrator who manages Chromium‑based browsers — including Microsoft Edge — should verify and deploy the fixes immediately...

Chrome Canary’s overlay scrollbars will now flash selectively — only when a scrollbar first appears in view or when the mouse actually hovers over it — reducing the distracting, page‑wide flicker users have complained about for years. This behavior is exposed in Canary behind a new experimental...

Google’s Chrome team is quietly testing a one-click option in Chrome’s Windows settings that not only sets Chrome as the default browser but will also pin it to the Windows 11 taskbar — a small UI change with outsized product and regulatory implications for how browsers compete on Windows. The...

Google Chrome and Microsoft Edge are no longer just browsers—they’re sprawling platforms where AI, privacy controls, and even gaming features are being used as battlegrounds to win users’ attention and loyalty. Background / Overview The modern browser fight is about more than page-load times and...

A high-severity memory-corruption flaw in Chromium’s V8 JavaScript engine, tracked as CVE-2025-9132, has been patched in the Chrome 139 stable update; the vulnerability is an out‑of‑bounds write that can lead to heap corruption and, in the worst case, remote code execution when a user visits a...

Microsoft’s behavior toward rival browsers has become a steady drumbeat in tech headlines: from rewriting how Windows 11 handles defaults to quietly routing certain system links into Microsoft Edge, the company has repeatedly taken steps that critics call anti-competitive and that many users...

A recently disclosed memory-safety flaw in Chromium’s Aura windowing component — tracked as CVE-2025-8882 — allows a remote attacker who can trick a user into specific UI gestures to trigger a use‑after‑free that may lead to heap corruption; the bug was patched upstream in Google Chrome...

Chromium security teams fixed a high‑risk out‑of‑bounds write in the ANGLE graphics translation layer (tracked as CVE‑2025‑8901), and users of Chromium‑based browsers — including Microsoft Edge after Microsoft ingests the Chromium update — must upgrade to the patched builds (Chrome...