Chrome 148 replace fixes 79 vulnerabilities, together with 14 vital
Abstract created by Good Solutions AI
In abstract:
- PCWorld stories Google launched Chrome 148 replace patching 79 safety vulnerabilities, together with 14 vital and 37 high-risk flaws affecting desktop and cell variations.
- Many vulnerabilities are ‘use-after-free’ points that might enable attackers to use browser reminiscence, prompting Google to contemplate memory-safe languages like Rust.
- Customers ought to instantly replace by way of Assist → About Google Chrome to guard towards these unpatched safety threats earlier than potential exploitation happens.
With the brand new Chrome variations 148.0.7778.167/168 for Home windows and macOS and 148.0.7778.167 for Linux, the builders have patched 79 safety vulnerabilities. Based on Google, none of them are presently being exploited within the wild but.
Within the Chrome Releases weblog publish, Srinivas Sista lists all the mounted flaws. AI fashions specializing in vulnerability detection possible performed a big function within the dramatic enhance within the variety of vulnerabilities discovered. Google found 59 of those vulnerabilities whereas the remaining 20 have been reported by exterior safety researchers. Google has thus far awarded these researchers $112,000 in bounties.
Fourteen of the 79 vulnerabilities are categorised as vital: CVE-2026-8509 to CVE-2026-8522. An extra 37 vulnerabilities are categorised as excessive threat, with the rest categorised as medium threat. As soon as once more, use-after-free (UAF) vulnerabilities dominate. Eight UAF vulnerabilities are categorised as vital, with 24 UAF flaws in complete.
UAF vulnerabilities are harmful as a result of this system makes an attempt to entry dynamically allotted reminiscence areas which have already been launched. UAF vulnerabilities are a standard downside in programming languages like C and C++, so Google intends to rely extra on memory-safe languages like Rust. (Mozilla has been utilizing Rust for a while, however remains to be burdened with tens of millions of strains of legacy C code.)
As well as, Google has additionally launched Chrome for Android 148.0.7778.167 and Chrome for iOS 148.0.7778.166 this week. The Android model addresses the identical vulnerabilities because the desktop variations. The Prolonged Secure Channel for Home windows and macOS now consists of Chromium model 148.0.7778.168.
As a rule, Chrome updates routinely when a brand new model is out there. You’ll be able to manually examine for updates by way of the menu merchandise Assist → About Google Chrome. Chrome model 149 is predicted in early June.
Tip: Whether or not you retain your browser updated, you want correct antivirus protections if you need your PC to stay safe and personal. Try our picks for the perfect antivirus software program for Home windows in addition to finest VPN providers to remain forward of safety issues.
This text initially appeared on our sister publication PC-WELT and was translated and localized from German.
