Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Chrome emergency zero-day patch (CVE-2026-3909, CVE-2026-3910)

Security Patch Release
First reported
Last updated
Happening score
H score 48
2 unique sources, 2 articles

Summary

Hide ▲

Google pushed an emergency Chrome update for Stable Desktop users on Windows, macOS, and Linux after confirming CVE-2026-3909 and CVE-2026-3910 are exploited in the wild. The patch reduces risk from Skia and V8 flaws that can lead to browser crashes or code execution. Google said the out-of-band rollout may take days or weeks, so users may need to check for updates manually.

Related Happenings

Microsoft security patch release for CVE-2026-41089

Security Patch Release
First: 13.05.2026 00:46 Last: 13.05.2026 00:46 Sources 1

About this happening: **Microsoft** and other major software vendors shipped a heavy **May 2026** patch cycle, with fixes spanning **Windows**, **iOS**, **Firefox**, **Oracle** products, and **Chrome**...

Open Happening

Google overhauls Android and Chrome bug bounty programs

Commercial Activity
First: 05.05.2026 14:24 Last: 05.05.2026 14:24 Sources 1

About this happening: **Google** overhauls its **Android and Chrome** vulnerability rewards programs, reshaping payout tiers for **exploit research** and raising top rewards to **$1.5 million**. The ch...

Open Happening

Google Gemini CLI workspace-trust hardening update

Security Patch Release
First: 30.04.2026 10:07 Last: 30.04.2026 10:07 Sources 1

About this happening: Google released a **Gemini CLI** security update that changes **workspace-trust handling** for **headless CI workflows**, reducing the risk that untrusted folders can trigger **ho...

Open Happening

GitHub CVE-2026-3854 security patch release

Security Patch Release
First: 29.04.2026 15:41 Last: 29.04.2026 15:41 Sources 1

About this happening: **GitHub** released **security fixes** for **CVE-2026-3854**, patching **GitHub.com** and supported **GitHub Enterprise Server** builds after a critical **remote code execution**...

Open Happening

Adobe security patch release for CVE-2026-34621

Security Patch Release
First: 12.04.2026 07:25 Last: 12.04.2026 07:25 Sources 1

About this happening: **Adobe** issued **emergency updates** for **Acrobat Reader**, **Acrobat DC**, and **Acrobat 2024** after **CVE-2026-34621** was found **actively exploited in the wild**. The patc...

Open Happening

Timeline

  1. 13.03.2026 11:17 1 articles · 2mo ago

    Google reports Chrome zero-day findings in Skia and V8

    Initial Disclosure

    Google discovers and reports CVE-2026-3909, an out-of-bounds write vulnerability in the Skia 2D graphics library, and CVE-2026-3910, an inappropriate implementation vulnerability in the V8 JavaScript and WebAssembly engine, on March 10, 2026; both issues are reachable via crafted HTML pages.

    Show sources
    Open in new tab
  2. 13.03.2026 11:17 1 articles · 2mo ago

    Google ships Chrome fixes for exploited zero-days

    Mitigation Patch Update

    Google releases Chrome security updates for Windows, macOS, and Linux to fix CVE-2026-3909 and CVE-2026-3910, advising users to install 146.0.7680.75/76 on Windows and macOS or 146.0.7680.75 on Linux and relaunch the browser.

    Show sources
    Open in new tab
  3. 13.03.2026 08:56 2 articles · 2mo ago

    Google releases emergency Chrome patch for two exploited zero-days

    Mitigation Patch Update

    Google released emergency security updates for Chrome Stable Desktop on Windows, macOS, and Linux to fix CVE-2026-3909 in Skia and CVE-2026-3910 in the V8 JavaScript and WebAssembly engine after confirming exploits exist in the wild. The out-of-band update was rolled out within two days of reporting and may take days or weeks to reach all users, with version updates including 146.0.7680.75 and 146.0.7680.76.

    Show sources
    Open in new tab