GOOGLE has officially promoted Chrome 145 to the stable channel, rolling out a fresh wave of defences for billions of users across Windows, Mac and Linux. The update brings the browser to version 145.0.7632.45 for Linux and 145.0.7632.45/.46 for Windows and Mac, with the rollout expected to complete over the coming days.
Three high-severity vulnerabilities are highlighted, targeting CSS handling, codecs and WebGPU, namely CSS “Use After Free” (CVE-2026-2313), Codec Corruption (CVE-2026-2314) and WebGPU Implementation (CVE-2026-2315). The CSS flaw was described as a memory corruption issue that could be exploited to run arbitrary code, with researchers Han Zheng (HexHive), Wenhao Fang (University of St. Andrews) and Qinying Wang (HexHive) earning an $8,000 bounty.
In addition, a Heap buffer overflow (CVE-2026-2314) was uncovered by internal Google researchers, and a separate Inappropriate implementation in WebGPU (CVE-2026-2315) was patched. Users are urged to update by going to Settings > Help > About Google Chrome to ensure they are running version 145.0.7632.45 or higher.