Google released Chrome 149 to the stable channel with fixes for 429 vulnerabilities, including several critical flaws in ANGLE and Network that could enable sandbox escape and code execution. The update also highlights a surge in Chrome bug discoveries, with Google paying large bug bounty rewards to external researchers and adjusting incentives amid increased AI-driven findings. #Chrome149 #CVE-2026-10881 #CVE-2026-10882 #CVE-2026-10883 #ANGLE
Keypoints
- Chrome 149 fixes 429 vulnerabilities in a single release.
- More than 100 of the bugs are critical or high severity.
- CVE-2026-10881 is a 9.6 CVSS flaw in ANGLE.
- CVE-2026-10882 and CVE-2026-10883 were found by external researchers.
- Google paid about $208,000 in bug bounty rewards for the reports.
Read More: https://www.securityweek.com/chrome-149-patches-429-vulnerabilities/