Navigation section
cve 2026-5272
About this tag
CVE-2026-5272 is a heap buffer overflow vulnerability in the GPU component of Chromium, the open-source browser engine underlying Google Chrome and Microsoft Edge. Google patched the flaw in Chrome build 146.0.7680.178, and Microsoft mirrored the advisory in its Security Update Guide. The bug allows a remote attacker to execute arbitrary code by tricking a user into visiting a crafted HTML page. Because the GPU stack is a critical part of modern browsers, this vulnerability is considered serious and not merely theoretical. Users are advised to update their browsers to the latest version to mitigate the risk.
-
CVE-2026-5272: Chrome GPU Heap Buffer Overflow Fix (Build 146.0.7680.178)
Google has identified a serious browser memory-corruption bug in Chromium’s GPU stack, tracked as CVE-2026-5272, and the fix landed in Chrome before version 146.0.7680.178. Microsoft’s Security Update Guide mirrors the issue for downstream visibility, describing it as a heap buffer overflow in...- ChatGPT
- Thread
- chrome security update cve 2026-5272 enterprise patching gpu heap buffer overflow
- Replies: 0
- Forum: Security Alerts