Chrome Releases reports:
This update includes 74 security fixes:
- [516501794] Critical CVE-2026-11628: Use after free in Ozone.
- [516674532] Critical CVE-2026-11629: Use after free in Ozone.
- [516677924] Critical CVE-2026-11630: Use after free in File Input.
- [516691130] Critical CVE-2026-11631: Use after free in Aura.
- [516707881] Critical CVE-2026-11632: Use after free in TabStrip.
- [516963272] Critical CVE-2026-11633: Use after free in Bluetooth.
- [516975148] Critical CVE-2026-11634: Use after free in Gamepad.
- [516987814] Critical CVE-2026-11635: Use after free in Bluetooth.
- [517023053] Critical CVE-2026-11636: Use after free in Autofill.
- [517040438] Critical CVE-2026-11637: Use after free in Views.
- [517047197] Critical CVE-2026-11638: Use after free in Printing.
- [517227707] Critical CVE-2026-11639: Use after free in Compositing.
- [517339758] Critical CVE-2026-11640: Integer overflow in libyuv.
- [517418936] Critical CVE-2026-11641: Use after free in Bluetooth.
- [517678820] Critical CVE-2026-11642: Use after free in Web Apps.
- [518006379] Critical CVE-2026-11643: Use after free in Proxy.
- [518043597] Critical CVE-2026-11644: Use after free in Views.
- [506689381] High CVE-2026-11645: Out of bounds memory access in V8.
- [517168239] High CVE-2026-11646: Use after free in ViewTransitions.
- [502156940] High CVE-2026-11647: Use after free in Printing.
- [506684534] High CVE-2026-11648: Use after free in FullScreen.
- [511270083] High CVE-2026-11649: Use after free in V8.
- [511279942] High CVE-2026-11650: Use after free in V8.
- [511736002] High CVE-2026-11651: Use after free in Network.
- [513156160] High CVE-2026-11652: Use after free in Extensions.
- [513321171] High CVE-2026-11653: Insufficient validation of untrusted input in Extensions.
- [513362710] High CVE-2026-11654: Use after free in CameraCapture.
- [513396305] High CVE-2026-11655: Integer overflow in Media.
- [513424000] High CVE-2026-11656: Use after free in ServiceWorker.
- [513465272] High CVE-2026-11657: Use after free in Payments.
- [513564337] High CVE-2026-11658: Insufficient validation of untrusted input in Extensions.
- [513702971] High CVE-2026-11659: Insufficient validation of untrusted input in UI.
- [513731890] High CVE-2026-11660: Insufficient validation of untrusted input in New Tab Page.
- [513748868] High CVE-2026-11661: Use after free in Views.
- [513773313] High CVE-2026-11662: Type Confusion in Bindings.
- [513820666] High CVE-2026-11663: Use after free in Skia.
- [513830374] High CVE-2026-11664: Use after free in Payments.
- [513948465] High CVE-2026-11665: Out of bounds read in Dawn.
- [514009323] High CVE-2026-11666: Insufficient validation of untrusted input in Input.
- [514671098] High CVE-2026-11667: Out of bounds read in WebRTC.
- [515419790] High CVE-2026-11668: Uninitialized Use in Codecs.
- [515429352] High CVE-2026-11669: Integer overflow in Media.
- [515469283] High CVE-2026-11670: Use after free in PDF.
- [516608438] High CVE-2026-11671: Use after free in Navigation.
- [516794471] High CVE-2026-11672: Out of bounds write in GPU.
- [516902973] High CVE-2026-11673: Use after free in InterestGroups.
- [516910450] High CVE-2026-11674: Use after free in Guest View.
- [516915337] High CVE-2026-11675: Insufficient validation of untrusted input in Skia.
- [516949298] High CVE-2026-11676: Insufficient validation of untrusted input in Dawn.
- [516979551] High CVE-2026-11677: Race in Network.
- [516986556] High CVE-2026-11678: Integer overflow in libyuv.
- [516997135] High CVE-2026-11679: Use after free in Codecs.
- [517004487] High CVE-2026-11680: Use after free in Media.
- [517050585] High CVE-2026-11681: Use after free in Ozone.
- [517103584] High CVE-2026-11682: Insufficient validation of untrusted input in Views.
- [517129549] High CVE-2026-11683: Use after free in WebCodecs.
- [517130229] High CVE-2026-11684: Insufficient policy enforcement in Network.
- [517183713] High CVE-2026-11685: Insufficient data validation in MediaCapture.
- [517247333] High CVE-2026-11686: Insufficient validation of untrusted input in Dawn.
- [517303276] High CVE-2026-11687: Use after free in Dawn.
- [517309206] High CVE-2026-11688: Object lifecycle issue in SVG.
- [517486004] High CVE-2026-11689: Insufficient validation of untrusted input in Passwords.
- [517533654] High CVE-2026-11690: Out of bounds read and write in Media.
- [517585486] High CVE-2026-11691: Insufficient validation of untrusted input in New Tab Page.
- [517607902] High CVE-2026-11692: Use after free in Read Anything.
- [517644287] High CVE-2026-11693: Inappropriate implementation in Plugins.
- [517705966] High CVE-2026-11694: Use after free in ServiceWorker.
- [517762104] High CVE-2026-11695: Inappropriate implementation in Passwords.
- [517993381] High CVE-2026-11696: Uninitialized Use in Video.
- [518105731] High CVE-2026-11697: Insufficient validation of untrusted input in UI.
- [518235412] High CVE-2026-11698: Use after free in Bluetooth.
- [518237527] High CVE-2026-11699: Use after free in Bluetooth.
- [511732085] Medium CVE-2026-11700: Use after free in Tracing.
- [516413817] Medium CVE-2026-11701: Insufficient validation of untrusted input in Guest View.