Chrome 148 Enhances Security with 127 Fixes

Chrome 148 Enhances Security with 127 Fixes

Posted on By CWS

Google has released Chrome version 148, a major update featuring 127 security patches. Available for Windows, Mac, and Linux, this update includes Chrome 148.0.7778.96 for Linux and 148.0.7778.96/97 for Windows and Mac, marking a significant step in enhancing browser security.

Critical Vulnerabilities Addressed

The latest update tackles three critical vulnerabilities. Among these, CVE-2026-7896, an integer overflow in Blink, was highlighted. This flaw, reported by an external researcher on March 18, resulted in a $43,000 reward. Additionally, two use-after-free issues, CVE-2026-7897 and CVE-2026-7898, reported internally by Google, were identified in the Mobile and Chromoting components, respectively.

Use-after-free vulnerabilities are particularly concerning as they can enable attackers to execute arbitrary code. These critical fixes are essential for maintaining browser security.

High-Severity Flaws and Rewards

Beyond critical issues, Chrome 148 also addresses numerous high-severity vulnerabilities. A notable one, CVE-2026-7899, involves an out-of-bounds read and write in the V8 JavaScript engine. This was reported by Project WhatForLunch, earning the highest reward of $55,000. Other significant flaws include heap buffer overflows in ANGLE, each rewarded with $16,000.

Vulnerabilities such as CVE-2026-7902, discovered by JunYoung Park, and others related to V8 and ANGLE, pose substantial risks for exploitation through malicious web content.

Comprehensive Security Enhancements

Chrome 148 goes further by resolving a range of use-after-free vulnerabilities across various components like SVG, DOM, GPU, and more. Medium-severity issues, such as object lifecycle mishaps in V8 and type confusion in WebRTC, were also addressed.

Among low-severity problems, CVE-2026-8022 allows potential data leaks via crafted MHTML pages. This underscores Chrome’s commitment to thorough security measures.

Google has credited numerous independent researchers and institutions for these findings, emphasizing the collaborative effort in advancing browser security.

Updating to Chrome 148

To protect your browser, users on all platforms are urged to upgrade to Chrome 148.0.7778.96/97 promptly. The update process is simple: navigate to Settings → Help → About Google Chrome to initiate automatic updates.

Looking ahead, Chrome 149 is set for release on June 2, 2026. Stay informed with our regular cybersecurity news on Google News, LinkedIn, and X.

Cyber Security News Tags:, , , , , , , , , , , , ,

Related Posts

3,280,081 Fortinet Devices Online With Exposed Web Properties Under Risk 3,280,081 Fortinet Devices Online With Exposed Web Properties Under Risk Cyber Security News
GitLab High-Severity Vulnerabilities Let Attackers Crash Instances GitLab High-Severity Vulnerabilities Let Attackers Crash Instances Cyber Security News
Malicious Adobe Reader Download Conceals Remote Access Threat Malicious Adobe Reader Download Conceals Remote Access Threat Cyber Security News
Researchers Proposed Game-Theoretic AI for Guiding Attack and Defense Researchers Proposed Game-Theoretic AI for Guiding Attack and Defense Cyber Security News
GTFire Phishing Attacks Exploit Google Services for Data Theft GTFire Phishing Attacks Exploit Google Services for Data Theft Cyber Security News
OceanLotus Hacker Group Targeting Xinchuang IT Ecosystems to Launch Supply Chain Attacks OceanLotus Hacker Group Targeting Xinchuang IT Ecosystems to Launch Supply Chain Attacks Cyber Security News