Eighth Chrome Zero-Day Vulnerability Patched in 2025

First reported

11.12.2025 10:01

Last updated

1 unique sources, 1 articles

Summary

Hide ▲

Google has released an emergency update to fix a high-severity zero-day vulnerability (466192044) in Chrome, marking the eighth such flaw exploited in attacks in 2025. The vulnerability, a buffer overflow in the ANGLE's Metal renderer, affects Chrome versions for Windows, macOS, and Linux. Google has not disclosed further details, including the CVE ID, as the issue remains under coordination. The flaw could lead to memory corruption, crashes, sensitive information leaks, and arbitrary code execution. Users are advised to update their browsers to versions 143.0.7499.109 for Windows and Linux, and 143.0.7499.110 for macOS.

Timeline

11.12.2025 10:01 1 articles · 1h ago

Eighth Chrome Zero-Day Vulnerability Patched in 2025
Google has released an emergency update to fix a high-severity zero-day vulnerability (466192044) in Chrome, marking the eighth such flaw exploited in attacks in 2025. The vulnerability, a buffer overflow in the ANGLE's Metal renderer, affects Chrome versions for Windows, macOS, and Linux. Google has not disclosed further details, including the CVE ID, as the issue remains under coordination. The flaw could lead to memory corruption, crashes, sensitive information leaks, and arbitrary code execution. Users are advised to update their browsers to versions 143.0.7499.109 for Windows and Linux, and 143.0.7499.110 for macOS.
Show sources

Google fixes eighth Chrome zero-day exploited in attacks in 2025 — www.bleepingcomputer.com — 11.12.2025 10:01
Open in new tab

Information Snippets

Google has released an emergency update for Chrome versions 143.0.7499.109 (Windows, Linux) and 143.0.7499.110 (macOS).
First reported: 11.12.2025 10:01

1 source, 1 article
Show sources
- Google fixes eighth Chrome zero-day exploited in attacks in 2025 — www.bleepingcomputer.com — 11.12.2025 10:01
The vulnerability (466192044) is a buffer overflow in ANGLE's Metal renderer caused by improper buffer sizing.
First reported: 11.12.2025 10:01

1 source, 1 article
Show sources
- Google fixes eighth Chrome zero-day exploited in attacks in 2025 — www.bleepingcomputer.com — 11.12.2025 10:01
The flaw could lead to memory corruption, crashes, sensitive information leaks, and arbitrary code execution.
First reported: 11.12.2025 10:01

1 source, 1 article
Show sources
- Google fixes eighth Chrome zero-day exploited in attacks in 2025 — www.bleepingcomputer.com — 11.12.2025 10:01
Google has not disclosed the CVE ID or further details about the zero-day bug, as it is still under coordination.
First reported: 11.12.2025 10:01

1 source, 1 article
Show sources
- Google fixes eighth Chrome zero-day exploited in attacks in 2025 — www.bleepingcomputer.com — 11.12.2025 10:01
This is the eighth Chrome zero-day vulnerability exploited in attacks in 2025.
First reported: 11.12.2025 10:01

1 source, 1 article
Show sources
- Google fixes eighth Chrome zero-day exploited in attacks in 2025 — www.bleepingcomputer.com — 11.12.2025 10:01