ZeroPath at Black Hat USA 2026

Quick Look: CVE-2026-9121, Out of Bounds Read in Google Chrome GPU Subsystem

A brief summary of CVE-2026-9121, an out of bounds read in Chrome's GPU process that can lead to heap corruption via crafted HTML. Includes patch details and affected version information.

CVE Analysis

6 min read

ZeroPath CVE Analysis
ZeroPath CVE Analysis

2026-05-20

Quick Look: CVE-2026-9121, Out of Bounds Read in Google Chrome GPU Subsystem
Experimental AI-Generated Content

This CVE analysis is an experimental publication that is completely AI-generated. The content may contain errors or inaccuracies and is subject to change as more information becomes available. We are continuously refining our process.

If you have feedback, questions, or notice any errors, please reach out to us.

[email protected]

Introduction

A heap corrupting out of bounds read in Chrome's GPU process, reachable through nothing more than a crafted HTML page, affects every Chrome installation below version 148.0.7778.179. With Chrome commanding roughly 68 percent of the global browser market, the exposure surface for CVE-2026-9121 spans billions of browser instances, and the fix only activates after a full browser relaunch that many users and managed endpoints delay indefinitely.

Technical Information

CVE-2026-9121 is classified under CWE-125 (Out of bounds Read) and resides in Chrome's GPU processing subsystem. The CVSS 3.1 vector assigned by CISA ADP is AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H, yielding a base score of 8.8 (High). All three impact dimensions (confidentiality, integrity, and availability) are rated High. The attack is network reachable, low complexity, requires no privileges, but does require user interaction in the form of visiting a malicious page.

Root Cause

The vulnerability stems from insufficient bounds checking in the GPU process when it handles graphical command data received from the renderer process via IPC. In Chromium's multi process architecture, the renderer process sends data such as texture handles, shader parameters, and compositing instructions to the GPU process. CVE-2026-9121 arises because the GPU process accepted an index or offset from the renderer without adequately verifying that it fell within the bounds of an allocated buffer. This allows an out of bounds read that corrupts heap state.

Attack Flow

  1. An attacker crafts an HTML page containing content designed to trigger specific GPU rendering operations.
  2. A victim navigates to this page, either directly or through a redirect.
  3. The renderer process parses the crafted content and generates graphical commands that are dispatched to the GPU process via IPC.
  4. The GPU process reads memory outside the intended buffer due to the missing bounds validation.
  5. The resulting heap corruption could potentially be leveraged to alter memory contents, execute arbitrary code, or crash the browser.

Severity Divergence

There is a notable divergence between the vendor severity rating and the CVSS score. Chromium internally rates this vulnerability as Medium, while CISA ADP assigned a CVSS 3.1 base score of 8.8 (High). Google's internal rating factors in Chrome's sandboxing architecture and built in exploit mitigations that the raw CVSS vector does not capture. The CVSS score reflects worst case impact if the sandbox were bypassed. Enterprise risk teams should generally align with the higher CVSS score when setting patch SLAs.

Sibling Fixes

The presence of sibling GPU fixes in the same release, specifically CVE-2026-9122 (out of bounds read in GPU on Mac) and CVE-2026-9113 (out of bounds read in GPU on Mac, rated High), suggests that the underlying remediation likely involves bounds checking improvements or buffer validation hardening within shared GPU process code paths.

Patch Information

Google addressed CVE-2026-9121 through a Stable Channel update for Chrome Desktop released on May 20, 2026. The fix ships in the following versions:

PlatformFixed Version
Windows148.0.7778.178/179
Mac148.0.7778.178/179
Linux148.0.7778.178

Any Chrome build at or above these version numbers contains the remediation.

Release Cadence Context

Understanding the Chrome 148 release cadence is important for organizations tracking their patch baseline:

  1. Initial launch (148.0.7778.96/97, May 5, 2026): 127 security fixes.
  2. Mid cycle update (148.0.7778.167/168, around May 14): 79 additional vulnerabilities patched.
  3. Third point release (148.0.7778.178/179, May 20): Smaller, focused update containing the fix for CVE-2026-9121.

Organizations that applied the 167/168 update and consider themselves current are still exposed to CVE-2026-9121 and must apply the 178/179 update.

Operational Considerations

Chrome auto updates in the background on most desktop installations, but the update only takes effect after a browser relaunch. Users and administrators who keep Chrome sessions open for extended periods may remain on a vulnerable binary even after the update has been downloaded. Enforcing periodic browser restarts through enterprise policy is advisable.

The corresponding Chromium issue tracker entry (issues.chromium.org/issues/488064108) remains access restricted. This is standard Chromium practice: Google keeps security bug details locked down until a majority of the user base has auto updated, preventing attackers from reverse engineering the fix before users are protected.

Temporary Workaround

For environments where immediate patching is not feasible, disabling hardware accelerated GPU rendering via Chrome flags or enterprise policy reduces the likelihood of triggering the vulnerable code path.

Downstream Chromium Browsers

Other Chromium based browsers, including Microsoft Edge, Brave, Vivaldi, and Opera, inherit the same GPU code from upstream Chromium and will require their own corresponding updates once the fix is integrated into their respective release pipelines.

Affected Systems and Versions

All Google Chrome installations with a build version prior to 148.0.7778.178 (Linux) or 148.0.7778.178/179 (Windows and Mac) are vulnerable. This includes:

  • Google Chrome for Windows: all versions below 148.0.7778.178
  • Google Chrome for Mac: all versions below 148.0.7778.178
  • Google Chrome for Linux: all versions below 148.0.7778.178
  • Other Chromium based browsers (Microsoft Edge, Brave, Vivaldi, Opera) that have not yet integrated the upstream fix

Organizations that updated to the mid cycle release 148.0.7778.167/168 are still affected and must apply the 178/179 update.

Vendor Security History

Google maintains a highly active security posture through its Vulnerability Reward Program (VRP). In 2024, the program received 337 reports of unique, valid security bugs in Chrome and awarded 3.4 million dollars to 137 researchers. This mature intake and remediation pipeline ensures that vulnerabilities are identified and patched rapidly.

The Chrome 148 release cycle itself illustrates the volume of security work: 127 fixes in the initial release, 79 in the mid cycle update, and additional focused fixes in the 178/179 point release. The co-occurrence of multiple GPU related CVEs (CVE-2026-9121, CVE-2026-9122, CVE-2026-9113) in the same update suggests an active effort to harden the GPU subsystem's input validation.

References

Detect & fix
what others miss

Works with
  • GitHub
  • GitLab
  • Bitbucket
  • Azure DevOps Services
  • Jira
  • Linear
  • Slack
  • Security Compass
Security magnifying glass visualization