The Chromium-assigned CVE for a use‑after‑free in Safe Browsing appears in Microsoft’s Security Update Guide because Microsoft Edge (Chromium‑based) consumes Chromium open‑source components; the Security Update Guide entry is Microsoft’s downstream record showing when Edge has ingested and...
CVE‑2025‑11458 is a heap buffer overflow in Chromium’s Sync component that was assigned to the Chromium open‑source project and subsequently recorded in Microsoft’s Security Update Guide so Edge operators can know whether their Microsoft Edge (Chromium‑based) builds have ingested the upstream...
Chromium developers have closed a high‑severity upstream bug — tracked as CVE‑2025‑10201 — that the Chromium project describes as an “inappropriate implementation in Mojo” which could be abused, via a crafted HTML page, to bypass Chrome’s site‑isolation protections on Android, Linux and...
Chromium security teams patched a critical use‑after‑free vulnerability in the ANGLE graphics translation layer tracked as CVE‑2025‑9478, and every Windows and enterprise administrator who manages Chromium‑based browsers — including Microsoft Edge — should verify and deploy the fixes immediately...