Chrome 149 Patches 28 Flaws, Several Critical UAF Bugs

Google has released Chrome 149.0.7827.114/.115 for Windows and Mac (and 149.0.7827.114 for Linux) to address 28 security vulnerabilities. The update includes multiple critical use-after-free issues in components such as Core, DigitalCredentials, WebMIDI, and Media, tracked as CVE-2026-12007, CVE-2026-12008, CVE-2026-12011, and CVE-2026-12013, along with CVE-2026-12009 (Accessibility input validation) and CVE-2026-12010 (GPU heap buffer overflow). Because these flaws could enable crashes or code execution, updating promptly matters for users and organizations running Chrome.