CHROME-2026-03-18

The Stable channel has been updated to 146.0.7680.153/154 for Windows/Mac  and 146.0.7680.153 for Linux, which will roll out over the coming days/weeks. A full list of changes in this build is available in the LogSecurity Fixes and RewardsNote: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.This update includes 26 security fixes. Please see the Chrome Security Page for more information. Critical CVE-2026-4439: Out of bounds memory access in WebGL. Reported by Goodluck on 2026-01-15 Critical CVE-2026-4440: Out of bounds read and write in WebGL. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-02-20 Critical CVE-2026-4441: Use after free in Base. Reported by Google on 2026-03-03 High CVE-2026-4442: Heap buffer overflow in CSS. Reported by Syn4pse on 2026-02-16 High CVE-2026-4443: Heap buffer overflow in WebAudio. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-02-18 High CVE-2026-4444: Stack buffer overflow in WebRTC. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-02-21 High CVE-2026-4445: Use after free in WebRTC. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-02-22 High CVE-2026-4446: Use after free in WebRTC. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-02-22 High CVE-2026-4447: Inappropriate implementation in V8. Reported by Erge on 2026-02-23 High CVE-2026-4448: Heap buffer overflow in ANGLE. Reported by M. Fauzan Wijaya (Gh05t666nero) on 2026-02-23 High CVE-2026-4449: Use after free in Blink. Reported by Syn4pse on 2026-02-24 High CVE-2026-4450: Out of bounds write in V8. Reported by qymag1c on 2026-02-26 High CVE-2026-4451: Insufficient validation of untrusted input in Navigation. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-02-26 High CVE-2026-4452: Integer overflow in ANGLE. Reported by cinzinga on 2026-02-26 High CVE-2026-4453:...