You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
skia use-after-free
About this tag
The tag skia use-after-free covers a high-severity Chromium vulnerability, CVE-2026-7920, affecting Google Chrome before version 148.0.7778.96 and inherited by Microsoft Edge. This use-after-free flaw in Skia, the graphics library, is not a simple crash but a sandbox escape risk. After an attacker first compromises the renderer process, this bug can be chained to escape the sandbox, making it dangerous in multi-stage attacks. The tag focuses on the technical details of the vulnerability, its impact on browser security, and the implications for Windows users running Chromium-based browsers like Chrome and Edge.
On May 6, 2026, CVE-2026-7920 was published as a high-severity Chromium vulnerability in Skia affecting Google Chrome before version 148.0.7778.96, with Microsoft tracking it for Edge because Edge inherits Chromium’s security debt. The bug is not a garden-variety browser crash. It is a...