chromium

Google and the Chromium project have patched CVE-2025-9867, a medium-severity inappropriate implementation bug in the Downloads component that can be abused for UI spoofing on Chrome for Android, and users should update their mobile and desktop Chromium-based browsers immediately to eliminate...

Microsoft Edge Canary for Android now includes an experimental flag that enables background video playback — a simple toggle that, in early tests, lets YouTube audio continue when you switch apps, change tabs, or lock your phone, without requiring a YouTube Premium subscription. Background...

Linux Lite 7.6 arrives as a pragmatic, low-friction alternative for users tired of Windows 11’s hardware demands—especially those running older laptops and desktops who want a familiar, lightweight desktop with current applications and clearer documentation. Background / Overview Linux Lite has...

Chromium security teams patched a critical use‑after‑free vulnerability in the ANGLE graphics translation layer tracked as CVE‑2025‑9478, and every Windows and enterprise administrator who manages Chromium‑based browsers — including Microsoft Edge — should verify and deploy the fixes immediately...

Chrome Canary’s overlay scrollbars will now flash selectively — only when a scrollbar first appears in view or when the mouse actually hovers over it — reducing the distracting, page‑wide flicker users have complained about for years. This behavior is exposed in Canary behind a new experimental...

Google’s Chrome team is quietly testing a one-click option in Chrome’s Windows settings that not only sets Chrome as the default browser but will also pin it to the Windows 11 taskbar — a small UI change with outsized product and regulatory implications for how browsers compete on Windows. The...

Google Chrome and Microsoft Edge are no longer just browsers—they’re sprawling platforms where AI, privacy controls, and even gaming features are being used as battlegrounds to win users’ attention and loyalty. Background / Overview The modern browser fight is about more than page-load times and...

A high-severity memory-corruption flaw in Chromium’s V8 JavaScript engine, tracked as CVE-2025-9132, has been patched in the Chrome 139 stable update; the vulnerability is an out‑of‑bounds write that can lead to heap corruption and, in the worst case, remote code execution when a user visits a...

Microsoft’s behavior toward rival browsers has become a steady drumbeat in tech headlines: from rewriting how Windows 11 handles defaults to quietly routing certain system links into Microsoft Edge, the company has repeatedly taken steps that critics call anti-competitive and that many users...

A recently disclosed memory-safety flaw in Chromium’s Aura windowing component — tracked as CVE-2025-8882 — allows a remote attacker who can trick a user into specific UI gestures to trigger a use‑after‑free that may lead to heap corruption; the bug was patched upstream in Google Chrome...

Chromium security teams fixed a high‑risk out‑of‑bounds write in the ANGLE graphics translation layer (tracked as CVE‑2025‑8901), and users of Chromium‑based browsers — including Microsoft Edge after Microsoft ingests the Chromium update — must upgrade to the patched builds (Chrome...

A high-severity heap buffer overflow in the AV1 codec library libaom — tracked as CVE-2025-8879 — has been fixed in the latest Chromium builds; Google pushed the patch in Chrome stable channel updates to versions 139.0.7258.127/.128 (Windows and macOS) and 139.0.7258.127 (Linux), and browser...

A race condition in V8, tracked as CVE‑2025‑8880, was disclosed by the Chromium team and fixed upstream in Chrome Stable — the flaw could allow a remote attacker to execute code inside the browser sandbox via a crafted webpage, and Chromium-based browsers (including Microsoft Edge) are advised...

A newly recorded Chromium vulnerability, tracked as CVE-2025-8881, exposes a weakness in the browser’s File Picker implementation that can be coaxed into leaking cross‑origin data when a user is tricked into specific UI gestures on a crafted page; the bug affects Google Chrome builds prior to...

CVE-2025-49736 — Microsoft Edge (Chromium) for Android: UI‑spoofing / “UI performs the wrong action” vulnerability A deep-dive explainer, impact assessment, and practical mitigation checklist Summary Microsoft’s Security Update Guide lists CVE‑2025‑49736 as affecting Microsoft Edge...

Microsoft has confirmed that Microsoft Edge and the Microsoft WebView2 Runtime will continue to receive updates on Windows 10 (22H2) through at least October 2028, ensuring that Progressive Web Apps (PWAs), WebView-dependent applications, and Edge-powered experiences like Copilot-related...

In a recent security update, Google has addressed a vulnerability identified as CVE-2025-8582, which pertains to insufficient validation of untrusted input in the Document Object Model (DOM) within the Chromium project. This flaw could potentially allow attackers to execute arbitrary code or...

Chromium-based browsers, including Microsoft Edge, are once again in the spotlight as CVE-2025-8580—a critical filesystem vulnerability—has been patched in the upstream Chromium project. Microsoft’s prompt response highlights how the Edge team continues to rapidly adopt security fixes from...

FydeOS is rapidly gaining a reputation as one of the most promising alternatives to ChromeOS Flex for users seeking a robust, flexible, and multi-faceted operating system on both legacy and modern x64 hardware. As ChromeOS Flex continues to fill a crucial void for millions of Windows users left...

ChromeOS has garnered a reputation for simplicity, speed, and security, particularly among education and enterprise users. Yet, beneath its polished graphical user interface lies a command-line power tool known as CROSH—the Chrome OS Developer Shell. CROSH may not be as feature-rich as a...