Chrome 149 Patches 11 Use-After-Free Flaws Enabling Sandbox Escapes
Chrome 149 fixed 18 vulnerabilities dominated by use-after-free flaws that enable sandbox escapes. Google internally discovered 17 of them, continuing a shift toward automated detection. No wild exploitation is confirmed, yet chaining risk to OS flaws persists.
The update resolves four critical and 14 high-severity issues. Eleven are use-after-free defects, three critical. These allow attackers to corrupt freed memory objects during JavaScript execution, then chain to kernel or privileged process flaws for full host compromise. Google attributes 17 reports to internal teams and one critical case to an anonymous external researcher, with no in-the-wild exploitation declared in the advisory.
Internal discovery dominance aligns with the post-June 2024 pattern after the 429-patch spike. Use-after-free volume remains elevated because Chrome's V8 and Blink components retain complex object lifetimes despite prior mitigations. Sandbox escape chaining has appeared in documented campaigns against prior releases, where renderer bugs reached kernel via Windows or Linux primitives.
Users on Windows, macOS, and Linux must apply the update immediately. Absence of exploitation claims does not preclude targeted use; procurement records show continued investment in browser-targeted tooling by multiple state actors. Next stable release is expected within four weeks.
Google: Chrome 150 stable will contain at least eight use-after-free CVEs within 28 days of release.
Sources (3)
- [1]Primary Source(https://www.securityweek.com/chrome-149-update-resolves-18-severe-vulnerabilities/)
- [2]Supporting Source(https://chromereleases.googleblog.com/)
- [3]Supporting Source(https://nvd.nist.gov/)