Google releases emergency fix for yet another zero-day

1. Pro
2. Security

Google releases emergency fix for yet another zero-day News By Sead Fadilpašić published 11 December 2025

That's the eighth zero-day this year

Comments (0) ()

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works.

(Image credit: Tada Images / Shutterstock)

• Google patched a high‑severity Chrome zero‑day alongside two medium‑severity flaws
• Vulnerability likely tied to a LibANGLE buffer overflow enabling memory corruption and remote code execution
• This marks Chrome’s eighth zero‑day fix this year, underscoring ongoing browser‑targeted attacks

Google recently updated its Chrome browser to protect against a high-severity vulnerability that was being abused in the wild as a zero-day.

In a security advisory published earlier this week, the browser giant said it fixed three bugs for Chrome, including two medium-severity ones, and one high-severity.

For the latter, Google said it was “aware that an exploit exists in the wild.” Other details were not disclosed, in order to protect the users as the patch rolls out. This is standard practice for Google, withholding key details from the users - but also from cybercriminals and other hackers.

You may like

• Google patches another worrying Chrome security flaw - so update now, or be at risk
• Google patches worrying Chrome zero-day flaw being exploited in the wild - here's how to stay safe
• 107 Android flaws just got patched by Google - here's how to make sure you're up to date

Catch the price drop- Get 30% OFF for Enterprise and Business plans

The Black Friday campaign offers 30% off for Enterprise and Business plans for a 1- or 2-year subscription. It’s valid until December 10th, 2025. Customers must enter the promo code BLACKB2B-30 at checkout to redeem the offer.

View Deal

Crashing the browser

Exact dates when the patch is expected to roll out is unknown, Google confirmed it will be coming to most users “over the coming days/weeks”. The Stable channel has been updated to 143.0.7499.109/.110 for Windows/Mac, and 143.0.7499.109 for Linux, and when we checked, the update was already installed.

There is no official confirmation on what the bug is, but according to the Chromium bug ID, it was found in Google’s open-source LibANGLE library, BleepingComputer reports. LibANGLE is a translation layer that converts OpenGL ES calls into other graphics APIs, usually Direct3D on Windows. It lets browsers and apps run WebGL and OpenGL ES content even if the operating system doesn’t support those APIs natively.

The same source claims the bug is most likely a buffer overflow vulnerability in ANGLE’s Metal renderer, caused by improper buffer sizing. Crooks could have used the bug to corrupt memory, crash the browser, leak sensitive data, or even execute arbitrary code, remotely.

This is the eighth zero-day vulnerability that Google fixed in its Chrome browser. Last year, the company addressed ten such vulnerabilities.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Contact me with news and offers from other Future brandsReceive email from us on behalf of our trusted partners or sponsorsBy submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.

Browsers are one of the most used pieces of software on a computer and as such, are always the target of different hacking campaigns.

Via BleepingComputer

The best antivirus for all budgetsOur top picks, based on real-world testing and comparisons

➡️ Read our full guide to the best antivirus1. Best overall:Bitdefender Total Security2. Best for families:Norton 360 with LifeLock3. Best for mobile:McAfee Mobile Security

Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!

And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.

Sead FadilpašićSocial Links Navigation

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.

Logout Read more Google patches another worrying Chrome security flaw - so update now, or be at risk    Google patches worrying Chrome zero-day flaw being exploited in the wild - here's how to stay safe    107 Android flaws just got patched by Google - here's how to make sure you're up to date    Google Chrome zero-day exploited to send out spyware - here's what we know    Fortinet customers told to update immediately following major security issue - here's what we know    Microsoft issues patches for 56 security flaws - all 'important' severity or above    Latest in Security ICO levies £1.2 million fine against LastPass — data breach compromised info on 1.6 million users    Hackers distribute thousands of phishing attacks through Mimecast's secure-link feature    OpenAI admits new models likely to pose 'high' cybersecurity risk    Russian airline hack came through third-party tech vendor    16TB of corporate intelligence data exposed in one of the largest lead-generation dataset leaks    Proton Pass just made it even easier for developers to retrieve secrets — and that's a win for everyone involved    Latest in News ChatGPT 5.2 is here and ready to show you professional AI    Mullvad retires OpenVPN support on desktop, pushing all users to WireGuard    Switzerland will revise proposed law change after backlash from tech industry    How to watch Celtic vs AS Roma: Europa League 2025/26 free stream, TV channels, kick-off time    ‘They gave us the iPhone camera’: F1 producer Jerry Bruckheimer on Apple’s ‘phenomenal’ involvement in the movie’s production    The Galaxy Z TriFold has a neat PC trick that could justify its price tag    LATEST ARTICLES

1. 1I wasn’t convinced there was a need for the LG StanByMe 2 TV – but I’m completely sold on this rollable display after 3 weeks with it
2. 2Which brand has the best pet hair tool? I tested a whole bunch – here are the results
3. 3ChatGPT 5.2 is here and all about being a better thinker – here are the 3 things you need to know
4. 4Mysterious 88-core AMD CPU surfaces on eBay, and here's why I think it's the start of something big
5. 5OpenAI admits new models likely to pose 'high' cybersecurity risk