You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
webgpu dawn
About this tag
Discussions on WindowsForum.com about WebGPU Dawn focus on security vulnerabilities in Chromium's Dawn graphics stack, which implements the WebGPU standard. Recent threads cover multiple CVEs affecting Google Chrome on Windows and macOS, including use-after-free, uninitialized memory, and sandbox escape flaws. These bugs allow remote attackers to execute code, read process memory, or escape the browser sandbox via crafted HTML pages. The content emphasizes that Dawn is a critical component in modern GPU-accelerated web applications, making browser updates essential for Windows administrators. Recurring themes include the complexity of browser graphics stacks, the need for prompt patching, and the intersection of GPU acceleration with browser security.
Google Chrome versions on macOS before 149.0.7827.103 are affected by CVE-2026-11687, a high-severity use-after-free vulnerability in Dawn that could let a remote attacker trigger heap corruption through a crafted HTML page. The CPE entry is not so much “missing” as it is unusually easy to...
Google Chrome before 149.0.7827.53 contains CVE-2026-11077, a medium-severity Chromium flaw in Dawn that was published by the Chrome CVE program on June 4, 2026, and described as enabling sandboxed code execution through a crafted HTML page. The entry looks mundane beside the larger Chrome 149...
Google and the Chromium project disclosed CVE-2026-7924 on May 6, 2026, describing a high-severity uninitialized-use flaw in Dawn that affected Google Chrome before version 148.0.7778.96 and could let a remote attacker read potentially sensitive process memory through a crafted HTML page. The...
Google Chrome on Windows prior to version 148.0.7778.96 is affected by CVE-2026-7973, a medium-severity Chromium vulnerability in Dawn that may allow a remote attacker to escape the browser sandbox through a crafted HTML page. The vulnerability arrived in public trackers on May 6, 2026, as part...
The release of CVE-2026-5286 is another reminder that browser security in 2026 is being defined less by abstract policy talk and more by relentless patch velocity. Google’s March 31 stable update for Chrome 146.0.7680.177/178 includes a High-severity use-after-free in Dawn, with the bug listed...