Chrome 148 Enhances Security with 127 Fixes

Chrome 148 Enhances Security with 127 Fixes

Posted on By CWS

Google has released Chrome version 148, a major update featuring 127 security patches. Available for Windows, Mac, and Linux, this update includes Chrome 148.0.7778.96 for Linux and 148.0.7778.96/97 for Windows and Mac, marking a significant step in enhancing browser security.

Critical Vulnerabilities Addressed

The latest update tackles three critical vulnerabilities. Among these, CVE-2026-7896, an integer overflow in Blink, was highlighted. This flaw, reported by an external researcher on March 18, resulted in a $43,000 reward. Additionally, two use-after-free issues, CVE-2026-7897 and CVE-2026-7898, reported internally by Google, were identified in the Mobile and Chromoting components, respectively.

Use-after-free vulnerabilities are particularly concerning as they can enable attackers to execute arbitrary code. These critical fixes are essential for maintaining browser security.

High-Severity Flaws and Rewards

Beyond critical issues, Chrome 148 also addresses numerous high-severity vulnerabilities. A notable one, CVE-2026-7899, involves an out-of-bounds read and write in the V8 JavaScript engine. This was reported by Project WhatForLunch, earning the highest reward of $55,000. Other significant flaws include heap buffer overflows in ANGLE, each rewarded with $16,000.

Vulnerabilities such as CVE-2026-7902, discovered by JunYoung Park, and others related to V8 and ANGLE, pose substantial risks for exploitation through malicious web content.

Comprehensive Security Enhancements

Chrome 148 goes further by resolving a range of use-after-free vulnerabilities across various components like SVG, DOM, GPU, and more. Medium-severity issues, such as object lifecycle mishaps in V8 and type confusion in WebRTC, were also addressed.

Among low-severity problems, CVE-2026-8022 allows potential data leaks via crafted MHTML pages. This underscores Chrome’s commitment to thorough security measures.

Google has credited numerous independent researchers and institutions for these findings, emphasizing the collaborative effort in advancing browser security.

Updating to Chrome 148

To protect your browser, users on all platforms are urged to upgrade to Chrome 148.0.7778.96/97 promptly. The update process is simple: navigate to Settings → Help → About Google Chrome to initiate automatic updates.

Looking ahead, Chrome 149 is set for release on June 2, 2026. Stay informed with our regular cybersecurity news on Google News, LinkedIn, and X.

Cyber Security News Tags:, , , , , , , , , , , , ,

Related Posts

Grafana Vulnerabilities Allow User Redirection to Malicious Sites and Code Execution in Dashboards Grafana Vulnerabilities Allow User Redirection to Malicious Sites and Code Execution in Dashboards Cyber Security News
SideWinder Targets Government Emails with Fake PDF Viewer SideWinder Targets Government Emails with Fake PDF Viewer Cyber Security News
Windows Cloud Files Mini Filter Driver Vulnerability Exploited to Escalate Privileges Windows Cloud Files Mini Filter Driver Vulnerability Exploited to Escalate Privileges Cyber Security News
Hackers Offered K+ to Sever Ring from Amazon Cloud Hackers Offered $10K+ to Sever Ring from Amazon Cloud Cyber Security News
A Container Based Red Teaming Toolkit for AI Security Testing A Container Based Red Teaming Toolkit for AI Security Testing Cyber Security News
FvncBot Exploits Android Accessibility: A New Threat FvncBot Exploits Android Accessibility: A New Threat Cyber Security News