Stable Channel Update for Desktop

The Stable channel has been updated to versions 144.0.7559.132/.133 for Windows and Mac, and 144.0.7559.132 for Linux, with the rollout occurring over the subsequent days or weeks. This update incorporates two significant security fixes, crucial for maintaining user protection. Details regarding bug specifics and associated links may be temporarily restricted until most users have received the patch, or if the vulnerability resides in an unfixed third-party library. One high-severity vulnerability addressed is CVE-2026-1861, a Heap buffer overflow found in libvpx, which was internally reported by Google. The second high-severity fix is for CVE-2026-1862, identified as a Type Confusion issue within V8, reported by an external researcher named Chaoyuan Peng. The development team extends gratitude to all security researchers who collaborated to prevent bugs from reaching the stable channel. Many security flaws are detected through advanced tooling, including AddressSanitizer, MemorySanitizer, and various fuzzing techniques like libFuzzer and AFL. Users are encouraged to file a bug report if they encounter new issues or seek assistance via the community help forum. Further information is available on the Chrome Security Page and in the full change log.