Google Chrome Update 150: Addressing Nearly 400 Vulnerabilities
In the latest update of Google Chrome, versions 150.0.7871.46/47 for Windows and macOS, as well as 150.0.7871.46 for Linux, developers have successfully patched approximately 400 vulnerabilities, many of which are critical. This update, previously rolled out to one percent of users as an “Early Stable Update,” ensures that none of these fixed vulnerabilities have been exploited in the wild, according to Google. As a result, users of other Chromium-based browsers can expect similar updates in the coming days.
Overview of the Fixed Vulnerabilities
According to Daniel Yip from the Chrome Release Blog, 382 security vulnerabilities have been addressed in this update. Remarkably, Google discovered 358 of these vulnerabilities internally, while external security researchers identified the rest. Google has rewarded these researchers with nearly $90,000 in bounty payments, emphasizing the importance of collaborative security efforts.
Among the fixed vulnerabilities, 15 are categorized as critical, numbered CVE-2026-13774 to CVE-2026-13788. Most of the critical issues stem from use-after-free (UAF) vulnerabilities in various components, including the Dawn graphics library. Moreover, three vulnerabilities were deemed exploitable due to insufficient validation of user inputs.
Risk Assessment of Vulnerabilities
The update also classifies the remaining vulnerabilities based on risk. Here’s the breakdown:
- Critical vulnerabilities: 15
- High-risk vulnerabilities: 67
- Medium-risk vulnerabilities: 169
- Low-risk vulnerabilities: 131
The largest share of these vulnerabilities comes from “inappropriate implementation,” totaling 82 issues. This is followed by “insufficient validation” of inputs, which accounts for 79 vulnerabilities, and UAF vulnerabilities, which total 72. Notably, Chrome for iOS has also eliminated 28 vulnerabilities in this update.
What’s New in Chrome 150?
Interestingly, the internal “What’s New” page of the browser does not report any new features for this version. Last week, Google released two security updates for Chrome 149, addressing over 20 vulnerabilities, some of which were critical. Chrome typically updates automatically when a new version is available, but users can also check for updates manually via the “Help” or “Settings” menu.
In addition to desktop versions, Google has also released Chrome 150.0.7871.63 for Android and 150.0.7871.51 for iOS, where the same vulnerabilities have been fixed as in the desktop versions. The Extended Stable Channel (ESC) for Windows and macOS also supports the new Chromium version. The release of Chrome version 151 is scheduled for late July.
Best Practices for Enhancing Security
While keeping your browser updated is crucial, enhancing your PC’s security with appropriate antivirus software is equally important. We recommend reviewing the best antivirus solutions highlighted in “The Best Antivirus Software of 2025.” If privacy during browsing is a priority, considering quality VPN services may also be beneficial.
Other Chromium-Based Browsers
The responsibility now lies with other Chromium-based browser manufacturers to follow suit with updates. Both Brave and Microsoft Edge are currently operating on a security baseline established at the end of last week.
Vivaldi has opted to focus on its new version 8.1 based on Chromium 150, ignoring the second Chromium update of the previous week. This new version is available in an initial release candidate and could be released within the week. Opera, on the other hand, has updated its browser to the new main version 133, which still contains the outdated Chromium version 149.0.7827.197, as no further updates will be provided for Chromium 149.
Conclusion
The recent Chrome 150 update demonstrates Google’s commitment to security by addressing a vast number of vulnerabilities. While the nature of the fixed vulnerabilities emphasizes the importance of rigorous security measures, users must remain vigilant and proactive in maintaining their privacy and security online. As other Chromium-based browsers adapt to these changes, the landscape of browser security continues to evolve, encouraging both developers and users to prioritize cybersecurity practices.

