Chrome Releases reports:
This update includes 28 security fixes:
- [516731749] Critical CVE-2026-12007: Use after free Core. Reported by Google on 2026-05-26
- [516942828] Critical CVE-2026-12008: Use after free DigitalCredentials. Reported by Google on 2026-05-27
- [517332006] Critical CVE-2026-12009: Insufficient validation of untrusted input ccessibility. Reported by Google on 2026-05-28
- [517531647] Critical CVE-2026-12010: Heap buffer overflow GPU. Reported by Google on 2026-05-28
- [518108291] Critical CVE-2026-12011: Use after free WebMIDI. Reported by Google on 2026-05-30
- [499182801] High CVE-2026-12012: Use after free etwork. Reported by Google on 2026-04-03
- [514229805] High CVE-2026-12013: Use after free Media. Reported by Henock Habte, Independent Security Researcher on 2026-05-18
- [514742747] High CVE-2026-12014: Use after free Cast. Reported by Google on 2026-05-19
- [515463295] High CVE-2026-12015: Use after free utofill. Reported by Google on 2026-05-21
- [516482138] High CVE-2026-12016: Insufficient validation of untrusted input DevTools. Reported by Google on 2026-05-25
- [516797143] High CVE-2026-12017: Insufficient validation of untrusted input Extensions. Reported by Google on 2026-05-26
- [516808201] High CVE-2026-12018: Inappropriate implementation Mojo. Reported by Google on 2026-05-26
- [516872067] High CVE-2026-12019: Out of bounds write Codecs. Reported by Google on 2026-05-26
- [516907083] High CVE-2026-12020: Use after free utofill. Reported by Google on 2026-05-27
- [516929496] High CVE-2026-12022: Race Safe Browsing. Reported by Google on 2026-05-27
- [517018374] High CVE-2026-12023: Use after free GPU. Reported by Google on 2026-05-27
- [517086161] High CVE-2026-12024: Insufficient policy enforcement DevTools. Reported by Google on 2026-05-27
- [517153191] High CVE-2026-12025: Insufficient validation of untrusted input etwork. Reported by Google on 2026-05-27
- [517347084] High CVE-2026-12026: Out of bounds read Video. Reported by Google on 2026-05-28
- [517517155] High CVE-2026-12027: Insufficient policy enforcement Headless. Reported by Google on 2026-05-28
- [517555461] High CVE-2026-12028: Use after free GPU. Reported by Google on 2026-05-28
- [518002958] High CVE-2026-12029: Use after free Video. Reported by Google on 2026-05-29
- [518007423] High CVE-2026-12030: Heap buffer overflow GPU. Reported by Google on 2026-05-29
- [518045638] High CVE-2026-12031: Inappropriate implementation Views. Reported by Google on 2026-05-30
- [518128953] High CVE-2026-12032: Inappropriate implementation Passwords. Reported by Google on 2026-05-30
- [519248779] High CVE-2026-12033: Out of bounds read VideoCapture. Reported by Google on 2026-06-02
- [519258799] High CVE-2026-12034: Insufficient validation of untrusted input Linux Toolkit Theming. Reported by Google on 2026-06-02
- [520210566] High CVE-2026-12035: Use after free Views. Reported by Google on 2026-06-05