Google Chrome Version 146 Patches Critical Zero-Day Security Vulnerabilities

Google releases urgent updates for Chrome version 146 across Windows, macOS, and Linux to address zero-day exploits in Skia and V8. These vulnerabilities are currently being exploited in the wild.

In the brand-new Chrome versions 146.0.7680.75/ 76 for Windows and macOS, and 146.0.7680.75 for Linux, the programmers have dealt with two safety and security vulnerabilities. According to Google, both vulnerabilities are currently being manipulated for strikes in the wild. This update comes only a day after Chrome versions 146.0.7680.71/ 72 for Windows and macOS, and 146.0.7680.71 for Linux, which repaired another 29 vulnerabilities.

In the brand-new Chrome variations 146.0.7680.75/ 76 for Windows and macOS, and 146.0.7680.75 for Linux, the developers have actually repaired two safety and security susceptabilities. According to Google, both vulnerabilities are currently being manipulated for strikes in the wild. Eleven security vulnerabilities were identified as high threat, and another eleven as tool danger.

Critical Zero-Day Exploits Identified

The first zero-day safety and security susceptability is a pest in the Skia graphics library (CVE-2026-3909) that enables write accessibility to memory addresses outside the borders of a predefined barrier (“out-of-bounds compose”).

One of the vulnerabilities (CVE-2026-3913) is identified as important, a barrier overflow in the WebML element. Tobias Wienand, the innovator of this vulnerability, was rewarded $33,000 for it. He also got an additional $43,000 for CVE-2026-3915, one more WebML barrier overflow (although that one only categorized as high threat).

Importance of Modern Antivirus Protection

Essential: Whether you keep your browser approximately date, you require proper anti-virus protections if you want your computer to stay secure and exclusive. Take a look at our choices for the best antivirus software program for Windows as well as ideal VPN solutions to stay in advance of protection issues.

Just 2 days earlier, on March 10th, Google released the brand-new major version Chrome 146, which you can read about in this Chrome Releases blog post. That upgrade set 29 safety and security vulnerabilities, nearly all of which were reported by outside protection researchers.

Eleven safety vulnerabilities were recognized as high danger, and an additional eleven as medium danger. Google has up until now granted over $200,000 to those that uncovered these susceptabilities. In some cases, Google has actually not yet established the quantity of their corresponding benefits.

Analysis of Recent Security Patches

The 2nd zero-day vulnerability (CVE-2026-3910) is located in the V8 JavaScript engine, called an “improper implementation.” It remains uncertain exactly what was implemented incorrectly and why this is such a problem.

Frank Ziemann has actually been working as a freelance writer for sibling site PC-WELT since 2005, composing information and test records. His primary subjects are IT protection (malware, anti-virus, protection gaps) and Net technology.