Emergency Chrome 146 update patches 2 zero-day vulnerabilities

Two days after releasing Chrome 146, Google's unscheduled update addresses two security flaws that are already being exploited in the wild.

Google rushes Chrome update fixing two zero-days already under attack

CVE-2026-3909 is an out-of-bounds write flaw in Skia, the graphics library Chrome uses to render web content and parts of its user interface. Memory corruption bugs like this can sometimes be abused ...