Hackers News Hackers News
  • CyberSecurity News
  • Threats
  • Attacks
  • Vulnerabilities
  • Breaches
  • Comparisons

Social Media

Hackers News Hackers News
  • CyberSecurity News
  • Threats
  • Attacks
  • Vulnerabilities
  • Breaches
  • Comparisons
Search the Site
Popular Searches:
technology Amazon AI
Recent Posts
Apple Hide My Email Flaw Exposed Real User Email Addresses
July 1, 2026
Critical Fluentd Vulnerabilities Allow Remote Code Execution
July 1, 2026
Weaponized Google Ads Install Malicious Claude Code to Hijack macOS
July 1, 2026
Home/CyberSecurity News/Google Chrome Updates Patch 79 Vulnerabilities, Including 14 Critical Flaws
CyberSecurity News

Google Chrome Updates Patch 79 Vulnerabilities, Including 14 Critical Flaws

Key Takeaways Google has released a critical security update for its Chrome browser, addressing 79 vulnerabilities. Among these, 14 flaws are rated as critical, posing severe risks including...

Emy Elsamnoudy
Emy Elsamnoudy
May 15, 2026 3 Min Read
45 0

Key Takeaways

  • Google has released a critical security update for its Chrome browser, addressing 79 vulnerabilities.
  • Among these, 14 flaws are rated as critical, posing severe risks including arbitrary code execution.
  • All Chrome users on Windows, Mac, and Linux are affected and urged to update immediately to stable versions 148.0.7778.167/168.
  • The update mitigates risks from common memory corruption issues like Use-after-free and Heap buffer overflow.

Google has deployed a substantial security update for its Chrome browser, addressing 79 distinct vulnerabilities. This crucial release aims to prevent potential exploitation by malicious actors, bolstering the security posture of millions of users worldwide.

Table Of Content

  • Key Takeaways
  • Critical Chrome Vulnerabilities Patched
  • What You Should Do

A significant concern within this patch is the remediation of 14 critical-rated flaws. Operating Chrome without this update leaves systems vulnerable to severe cyberattacks, highlighting the urgency for immediate action.

The latest stable release brings Chrome to version 148.0.7778.167/168 for Windows and Mac users, while Linux installations will update to 148.0.7778.167. Google is rolling out this patch progressively, but both individual users and enterprise administrators are strongly advised to initiate the update manually to ensure prompt protection.

The extensive nature of this security release underscores the persistent challenge posed by memory corruption bugs. Vulnerabilities such as “Use-after-free” (UAF) and “Heap buffer overflow” are particularly prevalent in complex browser architectures and are frequently targeted by attackers.

In line with its standard security protocols, Google has opted to withhold specific exploit details and proof-of-concept code. This strategic delay provides a vital window for the global user base to install the necessary patches before threat actors can develop and weaponize exploits based on public disclosures.

Despite the temporary nondisclosure of exploit specifics, Google has already compensated independent researchers with substantial bug bounties, indicating the profound severity of the vulnerabilities uncovered.

The most significant reward, totaling $43,000, was awarded to an external researcher identified as c6eed09fc8b174b0f3eebedcceb1e792 for identifying a critical heap buffer overflow within the WebML component.

Critical Chrome Vulnerabilities Patched

Google’s official release notes detail fixes for numerous memory management vulnerabilities that could enable attackers to execute arbitrary code. This typically occurs when a user visits a specially crafted malicious HTML page.

Security intelligence teams should pay close attention to the following breakdown of the most severe vulnerabilities addressed in this update:

CVE ID Component Vulnerability Type Reporter Bounty
CVE-2026-8509 WebML Heap buffer overflow c6eed09fc8b174b0f3eebedcceb1e792 $43,000
CVE-2026-8510 Skia Integer overflow [email protected] $25,000
CVE-2026-8511 UI Use after free Google N/A
CVE-2026-8512 FileSystem Use after free Google N/A
CVE-2026-8513 Input Use after free Google N/A
CVE-2026-8514 Aura Use after free Google N/A
CVE-2026-8515 HID Use after free Google N/A
CVE-2026-8516 DataTransfer Insufficient validation of untrusted input Google N/A
CVE-2026-8517 WebShare Object lifecycle issue Google N/A
CVE-2026-8518 Blink Use after free Google N/A
CVE-2026-8519 ANGLE Integer overflow Google N/A
CVE-2026-8520 Payments Race condition Google N/A
CVE-2026-8521 Tab Groups Use after free Google N/A
CVE-2026-8522 Downloads Use after free Google N/A

Browser vulnerabilities are a prime target for threat actors, who leverage them to bypass sandbox protections, exfiltrate sensitive data, and compromise the underlying operating system. Procrastinating on this patch introduces a direct and unacceptable risk to your digital infrastructure.

What You Should Do

  • Open your Chrome browser and click the three-dot menu located in the top-right corner.
  • Navigate to “Help,” then select “About Google Chrome.”
  • Allow the browser to automatically detect, download, and install the latest version (148.0.7778.167/168).
  • Click “Relaunch” to apply all security fixes and terminate any active, potentially vulnerable sessions.

Disclaimer: HackersRadar reports on cybersecurity threats and incidents for informational and awareness purposes only. We do not engage in hacking activities, data exfiltration, or the hosting or distribution of stolen or leaked information. All content is based on publicly available sources.

Tags:

AttackCVEExploitMalwarePatchSecurityThreatVulnerability

Share Article

Emy Elsamnoudy

Emy Elsamnoudy

Emy is a cybersecurity analyst and reporter specializing in threat hunting, defense strategies, and industry trends. With expertise in proactive security measures, Emily covers the tools and techniques organizations use to detect and prevent cyber attacks. She is a regular speaker at security conferences and has contributed to industry reports on threat intelligence and security operations. Emily's reporting focuses on helping organizations improve their security posture through practical, actionable insights.

Previous Post

Critical Microsoft Exchange Server RCE Vulnerability Under Active Attack CVE-2023-21529

Next Post

FrostyNeighbor Attacks: Hackers Abuse Scheduled Tasks for Persistence

No Comment! Be the first one.

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Popular Posts
Critical Citrix NetScaler ADC and Gateway Bugs Allow DoS, Memory Overflow
July 1, 2026
Critical Vulnerability in Windows Drivers Lets Attackers Disable Security Software
July 1, 2026
Automotive Manufacturer Boosts SOC Triage Speed, Closes Supplier Security Gap
July 1, 2026
Top Authors
Marcus Rodriguez
Marcus Rodriguez
Jennifer sherman
Jennifer sherman
Emy Elsamnoudy
Emy Elsamnoudy
Let's Connect
156k
2.25m
285k

Related Posts

Jennifer sherman
By Jennifer sherman
Threats

GlassWorm Attacks macOS via Malicious VS Code…

January 1, 2026
Emy Elsamnoudy
By Emy Elsamnoudy
Attacks

ClickFix Attack Hides Malicious Code via Stegan Security

January 1, 2026
Sarah simpson
By Sarah simpson
Vulnerabilities

MongoBleed Detector Tool Released to Detect MongoDB Vulnerability(CVE-2025-14847)

January 1, 2026
Emy Elsamnoudy
By Emy Elsamnoudy
Breaches

Conti Ransomware Gang Leaders & Infrastructure Exposed

January 1, 2026
Hackers News Hackers News
  • [email protected]

Quick Links

  • Contact Us
  • Privacy Policy
  • Terms of service

Categories

Attacks
Breaches
Comparisons
CyberSecurity News
Threats
Vulnerabilities

Let's keep in touch

receive fresh updates and breaking cyber news every day and week!

All Rights Reserved by HackersRadar ©2026

Follow Us