Articles from 2026
Browse all Windows news articles published in 2026
CVE-2026-5858: Critical WebML Heap Buffer Overflow Threatens Chrome and Edge Users
Microsoft has issued urgent security guidance for CVE-2026-5858, a critical heap buffer overflow vulnerability in the WebML component affecting Google Chrome versions before 147.0.7727.55. The flaw,...
Chrome 134 Patches CVE-2026-5907 Media Bug Exposing Windows Users to Data Leaks
Google has disclosed CVE-2026-5907, a medium-severity out-of-bounds read vulnerability in Chrome's Media component that affects Windows users alongside other platforms. The security flaw stems from...
Integer overflow in Chrome 147 media code can corrupt heap, allow code execution.
Google has patched a critical security vulnerability in Chrome 147.0.7727.55 that could allow attackers to execute arbitrary code on affected systems. The flaw, tracked as CVE-2026-5908, represents...
CVE-2026-5910: Critical Chrome Media Integer Overflow Vulnerability Patched in Version 147.0.7727.55
Google has released Chrome 147.0.7727.55 to address CVE-2026-5910, a critical integer overflow vulnerability in the Media component that could lead to heap corruption and remote code execution. The...
Google Chrome CVE-2026-5912: Critical WebRTC Integer Overflow Vulnerability Requires Immediate Update to 147.0.7727.55
Google has disclosed a critical vulnerability in Chrome's WebRTC implementation that requires immediate attention from all Windows users. CVE-2026-5912 represents a high-severity integer overflow...
Critical Chrome zero-day CVE-2026-5909 patched; Edge users face code execution risk via video files.
Google has patched a critical integer overflow vulnerability in Chromium's media processing component that affects Microsoft Edge users, but questions remain about Microsoft's patch prioritization...
CVE-2026-5911: Chrome ServiceWorker CSP Bypass Threatens Edge Users—Patch to 147.0.7727.55+ Now
Microsoft's Edge browser inherits a critical security vulnerability from its Chromium foundation that could allow attackers to bypass Content Security Policy protections. CVE-2026-5911, a...
Chrome CVE-2026-5914: Malicious Extensions Exploit V8 Engine for Persistent Heap Attacks
Google has disclosed CVE-2026-5914, a critical type confusion vulnerability in Chrome's V8 JavaScript engine that enables heap corruption through malicious extensions. This security flaw represents a...
CVE-2026-5919: Chrome WebSocket Bug Bypasses Same-Origin Policy - Microsoft Issues Security Advisory
Microsoft's Security Update Guide now documents CVE-2026-5919, a Chromium-based vulnerability that allows attackers to bypass the Same-Origin Policy through improper WebSocket validation. The flaw...
CVE-2026-5918 Patched: Update Chrome, Edge Now to Block Cross-Origin Data Leak
Google has patched a critical security vulnerability in Chrome that could allow attackers to access sensitive data across different websites. CVE-2026-5918 affects Chrome versions prior to...