Ungoogled Chromium 145.0.7632.75 has been released to address a critical vulnerability in its CSS engine, identified as CVE-2026-2441, which allowed malicious web pages to execute arbitrary code through memory corruption. The patch includes validation of object lifetimes and additional checks during style rule deletion, aligning with similar updates in standard Chrome releases. Users are strongly encouraged to upgrade immediately, as the vulnerability can be exploited via a simple phishing link, and the update does not affect performance. After upgrading, users should re-enable any desired privacy features that may be disabled by default

Ungoogled Chromium 145 Patched for Critical CSS Vulnerability (CVE-2026-2441)

A critical vulnerability in Chromium's CSS engine has been patched with the release of Ungoogled Chromium 145.0.7632.75. This bug, known as CVE-2026-2441, allowed malicious pages to execute arbitrary code by corrupting memory through use-after-free attacks. The patch validates object lifetimes and adds sanity checks around style rule deletion, making it identical to the security update in regular Chrome releases. Users are advised to upgrade immediately, as exploiting this bug requires only a phishing link and a modern browser, and the fix is lightweight with no noticeable performance hit.

Ungoogled Chromium 145 Patched for Critical CSS Vulnerability (CVE-2026-2441) @ Linux Compatible