Chrome 147 patch fixes 60 safety flaws, together with 2 essential ones
Abstract created by Good Solutions AI
In abstract:
- PCWorld experiences that Google Chrome’s newest replace patches 60 safety vulnerabilities, together with two essential buffer and integer overflow flaws within the WebML part.
- The replace addresses 14 high-risk vulnerabilities involving reminiscence errors and kind confusion, with Google awarding $118,000 in bounties to safety researchers.
- Customers ought to replace instantly for defense, whereas the replace additionally introduces cross-device tab group syncing performance.
Within the new Chrome variations 147.0.7727.55/56 for Home windows and macOS and 147.0.7727.55 for Linux, the builders have patched 60 safety vulnerabilities. In accordance with Google, none of those vulnerabilities have been exploited within the wild but. Chrome model 148 is predicted to launch in early Could.
What’s new in Chrome 147?
The browser’s “What’s new?” web page lists the flexibility to take tab teams with you to different gadgets as the one new function.
The lately introduced vertical tabs and new studying mode aren’t on this replace. Each new options are slated for this week, however they’re apparently rolling out steadily, not abruptly.
As a rule, Chrome updates routinely when a brand new model is accessible. You may manually verify for updates by way of the menu possibility Assist > About Google Chrome (alternatively, Settings > About Google Chrome).
Google additionally launched Chrome for Android 147.0.7727.49 this week, having already launched Chrome for iOS 147.0.7727.47 final week. The Android model addresses the identical vulnerabilities because the desktop variations. The Prolonged Secure Channel for Home windows and macOS now consists of Chromium model 146.0.7680.188.
Vulnerability after vulnerability
Within the Chrome Releases weblog submit, Srinivas Sista lists the 60 fastened safety vulnerabilities on this replace, virtually all of which had been reported by exterior safety researchers. Two of those vulnerabilities are categorized as essential: CVE-2026-5858 is a buffer overflow within the WebML part whereas CVE-2026-5859 an integer overflow in the identical part.
An additional 14 safety vulnerabilities are categorized as excessive threat. These embrace a mixture of buffer overflows, use-after-free vulnerabilities, and different reminiscence errors. The oft-surfacing sort confusion error within the V8 JavaScript engine can also be current—two instances, the truth is.
Of the remaining vulnerabilities, 20 are categorized as medium threat and 24 as low threat. Google has to this point awarded $118,000 in bounties to the discoverers of the vulnerabilities.
Tip: Whether or not you retain your browser updated, you want correct antivirus protections if you’d like your PC to stay safe and personal. Try our picks for the most effective antivirus software program for Home windows in addition to finest VPN providers to remain forward of safety issues.
This text initially appeared on our sister publication PC-WELT and was translated and localized from German.
