Google Resolves 151 Chrome Vulnerabilities, 22 Critical

Google Resolves 151 Chrome Vulnerabilities, 22 Critical

Posted on By CWS

Google has released a significant update for Chrome, addressing 151 security vulnerabilities, including 22 classified as critical. These vulnerabilities impact various components such as graphics, networking, media, and user interface across major operating systems including Windows, macOS, and Linux.

Details of the Chrome Update

The Stable channel now features versions 148.0.7778.216/217 for Windows, 148.0.7778.215/216 for macOS, and 148.0.7778.215 for Linux. The rollout of these updates will occur incrementally over the coming days and weeks.

A comprehensive list of changes can be found in the Chromium source log, yet Google is withholding detailed bug information until the majority of users have received the patch. This measured release strategy is intended to minimize the risk of exploitation by attackers.

Critical Vulnerabilities and Their Impact

Among the 151 vulnerabilities, 22 are deemed critical, with some already earning substantial bug bounties. Noteworthy cases include an out-of-bounds write in the GPU process (CVE-2026-9872) and several use-after-free conditions. These flaws pose significant risks, potentially allowing sandbox escapes, remote code execution, or data corruption if exploited.

Google’s internal teams and external researchers played a crucial role in identifying these issues. The company emphasizes the use of tools like sanitizers and fuzzers to detect memory corruption and undefined behavior, underscoring the importance of automated testing in cybersecurity.

High-Severity and Medium-Severity Flaws

In addition to the critical vulnerabilities, Google addressed numerous high-severity issues across various components such as DOM, Accessibility, and WebRTC. These include additional use-after-free conditions and race conditions, which were reported by both Google and external researchers.

Medium-severity vulnerabilities also received attention, with fixes for integer overflows and input validation deficiencies in components like ANGLE and Skia. These efforts highlight Google’s commitment to maintaining browser security through constant vigilance and improvement.

Google advises all users to promptly update Chrome to the latest Stable build, version 148.0.7778.x, to ensure maximum protection against potential threats. The company also encourages individuals who discover new issues to report them via the public bug tracker.

For ongoing updates and support on Chrome, users can follow Google on various platforms such as Google News, LinkedIn, and X.

Cyber Security News Tags:, , , , , , , , , , , , , ,

Related Posts

Hackers Exploit AI Tool in Attack on Mexican Utility Hackers Exploit AI Tool in Attack on Mexican Utility Cyber Security News
Retail Finance Giant SitusAMC Data Breach Exposes Accounting Records and Legal Agreements Retail Finance Giant SitusAMC Data Breach Exposes Accounting Records and Legal Agreements Cyber Security News
Salat Stealer Exfiltrates Browser Credentials Via Sophisticated C2 Infrastructure Salat Stealer Exfiltrates Browser Credentials Via Sophisticated C2 Infrastructure Cyber Security News
Windows Notepad Vulnerability Fixed in February Update Windows Notepad Vulnerability Fixed in February Update Cyber Security News
New LOSTKEYS Malware Linked to Russia State-Sponsored Hacker Group COLDRIVER New LOSTKEYS Malware Linked to Russia State-Sponsored Hacker Group COLDRIVER Cyber Security News
LexisNexis Breach Exposes Data from AWS Servers LexisNexis Breach Exposes Data from AWS Servers Cyber Security News