Google Patches 27 Security Flaws in Chrome 150 Update
Google has released Chrome 150.0.7871.114/115 for Windows and macOS, and Chrome 150.0.7871.114 for Linux, addressing 27 security vulnerabilities, including two rated as critical. The update follows an earlier Chrome 150 release issued just one day prior, which also contained security fixes but without detailed disclosures.
According to Google, none of the newly patched vulnerabilities are known to be actively exploited.
Two Critical Vulnerabilities Fixed
In the Chrome Releases blog, Google detailed the 27 vulnerabilities resolved in the latest update.
The two most severe issues are:
- CVE-2026-15112 — Use-after-free (UAF) vulnerability in Ozone
- CVE-2026-15129 — Use-after-free (UAF) vulnerability in Views
Use-after-free vulnerabilities can allow attackers to execute arbitrary code by exploiting improper memory handling, making them among the most serious browser security issues.
In total, the update fixes:
- 2 critical vulnerabilities
- 23 high-severity vulnerabilities
- 2 medium-severity vulnerabilities
Memory safety bugs continue to dominate Chrome’s security fixes, with 13 of the 27 vulnerabilities falling into the use-after-free category.
Most Bugs Discovered Internally
Google reports that it internally discovered 24 of the 27 vulnerabilities, while external security researchers identified the remaining three.
The company awarded $3,000 in bug bounty rewards for the externally reported issues.
Follows Chrome 150 Major Release
The latest security patch arrives shortly after Google’s major Chrome 150 release, which addressed more than 400 security vulnerabilities, including numerous critical flaws.
This smaller follow-up update focuses on additional security issues identified after the major release.
Automatic Update Recommended
Chrome typically installs updates automatically, but users can manually verify they are running the latest version by navigating to:
Help → About Google Chrome
Google has also released:
- Chrome for Android 150.0.7871.114
- Chrome for iOS 150.0.7871.113
The Android version includes the same security fixes as the desktop release, while the Extended Stable Channel for Windows and macOS has also been updated to Chromium 150.0.7871.115.
Users are encouraged to update as soon as possible to ensure they receive the latest security protections.


