Google has released a security update for Chrome that fixes a high-risk vulnerability in the latest 143 builds across all major desktop platforms. The patched versions include Chrome 143.0.7499.192/193 for Windows and macOS, and 143.0.7499.192 for Linux. According to Google, the flaw has not yet been exploited in active attacks, but users are still strongly encouraged to update as soon as possible.
Details shared in the Chrome Releases blog are limited. The vulnerability, tracked as CVE-2026-0628, was reported by an external security researcher and affects Chrome’s WebView component. It is classified as high severity and stems from “insufficient policy enforcement,” meaning certain security rules are not applied consistently. In practical terms, this could allow content from untrusted external sources to load without proper origin checks, potentially bypassing protections such as the same-origin policy. The issue was disclosed to Google by Gal Weizman in late November.
Chrome typically updates automatically in the background, but users can manually force an update by navigating to Help > About Google Chrome. Google has also pushed Chrome for Android version 143.0.7499.193, which addresses the same vulnerabilities as the desktop builds. In addition, the Extended Stable Channel for Windows and macOS has been updated to Chromium version 142.0.7499.265. Looking ahead, Google has confirmed that Chrome 144 is scheduled for release on January 13, 2026.
Other Chromium-based browsers are now expected to follow with their own updates. Microsoft Edge and Brave are still based on Chromium 143 and remain at pre-Christmas security levels. Vivaldi, which skips odd-numbered Chromium releases, is currently based on Chromium 142 and is likely to adopt the newly updated Extended Stable build soon, while its developers focus on Vivaldi 7.8 with Chromium 144. Opera, meanwhile, is in a transitional phase: Opera One 125 is still based on Chromium 141, which has not received updates since October 2025, while the Opera 126 beta has moved to Chromium 142 and is expected to receive a final security refresh.