Changes from 2.5.5 to 2.5.6:

Updates:

• Updated MPC Video Renderer to version 0.9.18.2480

Changes/improvements:

• Added an option to adjust alignment of the toolbar buttons. It is now possible to align to middle of window.
• When playing a rar archive that contains multiple media files, it is now possible to skip to next/previous file within the archive.

Fixes:

• Several small fixes and improvements.

The Extended Stable channel has been updated to 142.0.7499.226 for Windows and Mac which will roll out over the coming days/weeks.

The Chrome team is delighted to announce the promotion of Chrome 143 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks.

Chrome 143.0.7499.40 (Linux) 143.0.7499.40/41 Windows/Mac contains a number of fixes and improvements -- a list of changes is available in the log. Watch out for upcoming Chrome and Chromium blog posts about new features and big efforts delivered in 143.

Below are development builds for testing purposes.

Latest development build: 2.5.5.30 (November 27th 2025)

Latest stable release build: 2.5.5.0
https://github.com/clsid2/mpc-hc/releases/tag/2.5.5

fre:ac version 1.1.7 has been released on 5th March 2023.

This release adds a tool for splitting the output into multiple files based on various parameters like duration, number of files or metadata. The update also adds support for dithering, a matrix surround decoder and a volume adjustment filter.

Additionally, fre:ac 1.1.7 comes with various minor improvements, updated third party codecs and fixes for several issues found in fre:ac v1.1.6 and earlier versions:

• New features
  • Added a tool for splitting output by various parameters (e.g. duration or number of files)
  • Added support for dithering when reducing sample resolution
  • Added a matrix surround decoder DSP component
  • Added a volume adjustment DSP component

• Improvements
  • Added support for WavPack Hybrid Lossless compression with correction files
  • Added support for decoding MPEG-4 DASH files
  • Added support for opening WebM audio files with the .weba extension
  • Added support for downmixing 6.1 channel audio
  • Added support for MusicBrainz metadata in ID3v2, MP4, Vorbis Comment, APEv2 and WMA tags
  • Added support for sort order fields in ID3v2, MP4, Vorbis Comment, APEv2 and WMA tags
  • Added support for rating field in Vorbis Comment, APEv2, MP4 and LIST INFO tags
  • Added rating field to the tag editor
  • Added optional release year column to the joblist
  • Changed filename placeholder to resolve to 1 if disc number is not set
  • Improved compatibility with applications writing non-compliant LIST INFO tags (e.g. Traktor)
  • Added an option to use source file names as output file names if no metadata is present
  • Added an option to control extraction of missing metadata from file names
  • Added an option to restrict file names for reading cover art
  • Added an option to disable intensity stereo phase inversion to Opus settings
  • Added AccurateRip notification options for successful verification and missing database entries
  • Sample rate conversion no longer converts to 32 bit float when the source rate matches the target
  • Added negative exit codes to indicate errors when running freaccmd
  • Added support for KDE color schemes (including dark mode)
  • Improved HiDPI scale factor detection in KDE desktop environments
  • Respect text scaling factor in addition to font size setting on X11 based systems

• Bug fixes
  
  • Fixed crashes when decoding ALAC files (especially with the Windows Store version)
  • Fixed failure (hang and abort after several seconds) to decode chapters from ALAC files
  • Fixed interoperability issues of HE- and HEv2-AAC files created with FDK-AAC with foobar2000
  • Fixed incorrect gapless information when creating HE- and HEv2-AAC files with FDK-AAC
  • Fixed incorrect index times in cuesheets for very long multi-track files
  • Fixed incorrect inclusion of data tracks in the audio track count of CD offset strings
  • Fixed old data remaining in place after updating WMA file tags
  • Fixed selected format resetting to first entry when opening WMA config dialog
  • Fixed excessive bitrate when encoding Vorbis on non-x86 LP64 systems
  • Fixed decoding of MP4 files with a single chunk taking excessively long
  • Fixed HDCD detection for tracks starting with more than about one second of silence
  • Fixed floating point samples being converted to integer when creating WavPack files
  • Fixed inability to close cover art popup window on Linux
  • Fixed long paths being converted to 8.3 format on recent versions of Windows
  • Fixed inability to handle long network paths on some versions of Windows
  • Fixed disc insert and removal detection working unreliably on Windows

Upgrading to fre:ac v1.1.7 is strongly recommended for users of earlier releases.

The new release is available in the downloads section. Please report issues on the GitHub issue tracker or by email to support@freac.org.

fre:ac's discussion forums are moving to GitHub. Please post new questions and ideas in the new Discussions area and feel free to start discussions about anything releated to fre:ac and digital audio conversion over there.

The old discussion forums on SourceForge will be kept online for reference, but please use the GitHub Discussions page to start new topics from now on.

fre:ac version 1.1.6 has been released on 22nd January 2022.

This update adds native support for Windows on the ARM64 architecture which greatly improves the user experience on devices like the Surface Pro X, HP Elite Folio or certain Samsung Galaxy Book models. Most notably, conversions can be up to six times faster on many devices with ARM cores.

Besides this, the 1.1.6 update adds support for editing lyrics in the tag editor and creating cue sheets and playlists with freaccmd, fre:ac's command line interface. It also comes with minor workflow and performance optimizations, tagging improvements, updated codecs and the usual bug fixes:

• New features
  • Added support for editing lyrics in the tag editor
  • Added support for creating cue sheets and playlists with freaccmd

• Improvements
  • Improved performance of adding video and proprietary audio files (DTS, DSD etc.) to the joblist
  • Playlists can now be added to the joblist by drag & drop
  • Added <tempo> and <initialkey> placeholders for use in filename patterns
  • Added optional composer, conductor, tempo, musical key and ISRC columns to the joblist
  • Added initial key field to tag editor
  • Added support for lyrics in ID3v2, MP4, Vorbis Comment, APEv2 and WMA tags
  • Added support for parsing OverDrive MediaMarkers in ID3v2 tags
  • Added support for the pre-emphasis flag in cue sheets

• Bug fixes
  
  • Fixed possible crash upon querying the CDDB database
  • Fixed possible crash in FAAD2 decoder when trying to open unsupported files
  • Fixed faulty decoding of certain AAC files caused by a bug in the FDK-AAC decoder
  • Fixed possible faulty output when decoding from non-zero positions using external decoders
  • Fixed issue ripping CD tracks when output filename pattern is <filename>
  • Fixed AccurateRip reporting verification errors for hidden track one audio
  • Fixed setting to replace spaces not being respected when writing cover art and log files
  • Fixed setting to suppress Unicode characters not being respected when writing cover art and log files
  • Fixed tag editor fields for media type, catalog number and barcode being limited to 12 characters
  • Fixed freeze when decoding certain WMA files on Windows
  • Fixed drag & drop not working after online update on Windows

Upgrading to fre:ac v1.1.6 is strongly recommended for users of earlier releases.

The new release is available in the downloads section. Please report issues on the GitHub issue tracker or by email to support@freac.org.

fre:ac version 1.1.5 has been released on 27th June 2021.

This update adds support for verifying audio CD rips using AccurateRip technology. This compares a checksum of the ripped audio against other users' results for the same CD. When a match is found in the AccurateRip database, this basically certifies a perfect rip. And in case of a mismatch, fre:ac displays a warning to let you know something may be wrong.

Besides this major new feature, the 1.1.5 update comes with performance optimizations, further tagging improvements, updated codecs and a number of bug fixes:

• Improvements
  • Improved DSP processing performance by up to 70% (mainly on Windows)
  • Added frequency bandwidth setting to FDK-AAC encoder configuration dialog
  • Added an option to toggle logging of complete paths in log files
  • Added options for specifying cover art files to freaccmd
  • Added support for reading Shift_JIS encoded CD-Text
  • Added support for writing album and track comments to cue sheets
  • Added support for ID3v2 tags in RF64 files
  • Added support for updating Vorbis Comment tags
  • Added support for updating ID3v2 tags in RIFF and AIFF files
  • Added support for updating LIST INFO tags in RIFF, RF64 and Wave64 files
  • Added support for ensemble field in Vorbis Comment and APEv2 tags
  • Added support for movement field in ID3v2, Vorbis Comment, APEv2 and MP4 tags
  • Added support for additional URL fields in APEv2 tags
  • Added a tag editor option to keep album artist even if identical to track artist
  • Added media type field to tag editor

• Bug fixes
  
  • Fixed hotspot for genre edit field utility menu not covering the whole width of the field
  • Fixed occasional crashes when selecting codec subformat using the "Start encoding with" menu
  • Fixed chapter marks being offset by a few seconds when using DSP processing
  • Fixed playback not working when using certain combinations of DSP processors
  • Fixed incompatibility of FDK-AAC encoded HE and HEv2 AAC files with iTunes
  • Fixed issue decoding FLAC files with unknown length
  • Fixed glitches decoding transients in some Vorbis files
  • Fixed possible crashes when decoding Opus files
  • Fixed rare crashes in LAME encoder component
  • Fixed strings read from ID3v2 tags being limited to 1024 characters
  • Fixed crash when reading malformed CD-Text genre IDs
  • Fixed failure ripping with negative read offset
  • Fixed disc eject not working on macOS
  • Fixed crash when closing fre:ac via dock command on macOS
  • Fixed UI glitches and crashes on exit when running in a Wayland session
  • Fixed popup menu and dropdown list closing behavior on non-Windows platforms
  • Fixed issues with custom DPI settings on Xfce desktops
  • Fixed drag & drop working unreliably on X11 based systems

Upgrading to fre:ac v1.1.5 is strongly recommended for users of earlier releases.

The new release is available in the downloads section. Please report issues on the GitHub issue tracker or by email to support@freac.org.

Continuous builds of fre:ac are now available for the macOS as well, completing the effort to make these automated builds available for all major desktop operating systems. These builds give you a chance to try the latest changes without having to wait for the next release, for example to benefit from bug fixes or take a peek at the latest feature additions.

Continuous builds are currently provided as .dmg images for Intel Macs running macOS 10.9 or later. A variant optimized for Apple Silicon Macs and macOS 11.0 will be added later.

You can grab the latest continuous build from the downloads page or from GitHub.

Thanks to GitHub Actions, continuous builds of fre:ac are now available for the Windows platform. These automated builds give you a chance to try the latest changes without having to wait for the next release, for example to benefit from bug fixes or take a peek at the latest feature additions.

The continuous builds are provided as .zip packages for the x86 (32 bit) and x86-64 (64 bit) architectures.

You can grab the latest continuous build from the downloads page or from GitHub.

fre:ac version 1.1.4 has been released on 14th February 2021.

This is a service focussing on minor improvements and bug fixes. fre:ac 1.1.3 adds support for HDCD decoding, improves tagging support and usability of the tag editor, updates codecs to the latest versions and fixes several issues found in earlier releases:

• Improvements
  
  • Improved support for reading CD-Text
  • Added an HDCD decoder DSP filter
  • Added catalog number and barcode fields to tag editor
  • Added file type associations to macOS app, so fre:ac is offered for opening audio files
  • Added quality (VBR) setting to FDK-AAC configuration dialog
  • Improved MP3, AAC and Opus encoding performance by up to 30%
  • Improved multi-monitor support on X11 based systems
  • Discs of multi-disc albums are now shown separately in tag editor album mode
  • Update only changed fields when making edits in tag editor album mode
  • Added support for Replay Gain values in MP4 and WMA metadata
  • Do not override settings with default values when using freaccmd's --config option

• Bug fixes
  
  • Fixed invalid length written to very long Opus and Speex files (longer than 12 ½ hours at 48 kHz)
  • Fixed decoding of some very short Opus, Vorbis and Speex files
  • Fixed written MP4 chapters being invisible to some applications when using Nero AAC
  • Fixed hang/crash when opening WavPack, Musepack, TAK and OptimFROG files with chapters
  • Fixed issues submitting CDDB information for new CDs (without existing entries)
  • Fixed issues handling long path/file names on Windows
  • Fixed output sample rate being limited to 192 kHz
  • Fixed freaccmd randomly failing to process files in rare cases
  • Fixed bad user interface colors on some Linux distributions

• Codec support
  • Switched from FAAC to FDK-AAC for AAC encoding

Upgrading to fre:ac v1.1.4 is strongly recommended for users of earlier releases.

The new release is available in the downloads section. Please report issues on the GitHub issue tracker or by email to support@freac.org.

Just in time for the first Apple Silicon Macs being delivered to end users, fre:ac is now available for this new generation of Macs.

To support the different types of Macs, the macOS version of fre:ac is now available in two flavors:

• For Intel and PowerPC Macs running macOS 10.x, download freac-1.1.x-macos10.dmg
• For Intel and Apple Silicon Macs running macOS 11.0, download freac-1.1.x-macos11.dmg

Head over to the downloads section to get the Apple Silicon version or any other variant of fre:ac.

fre:ac version 1.1.3 has been released on 11th October 2020.

This is a service with only minor feature updates and improvements. Instead, the focus is on compatibility and bug fixes. fre:ac 1.1.3 adds support for macOS 11.0 Big Sur, updates codecs to the latest versions and fixes several issues found in earlier releases:

• General changes
  
  • Added support for macOS 11.0 Big Sur
  • Switched to using GNUdb as the default CDDB database service

• Improvements
  
  • Command line codec configuration now allows specifying additional arguments
  • Improved cue sheet encoding detection to support system codepage and UTF-8 without BOM
  • freaccmd now splits cue sheets to individual tracks unless an output file is specified
  • freaccmd now supports a --split-chapters option to split files into individual chapters
  • Added <profile> placeholder for output folder configuration setting, resolving to user profile
  • Added file type and audio CD associations to Linux/FreeBSD and Windows Store app
  • Added an option to suppress "No entry found" messages for automatic CDDB queries
  • Improved detection of sampler CDs when querying CDDB information

• Bug fixes
  
  • Fixed possible conversion thread hangs when using external encoders
  • Fixed possible crash related to drag & drop handling on Windows
  • Fixed crash when writing fields containing only whitespace to certain tag formats
  • Fixed glitches in WAV/AIFF output when processing samples outside the -1.0/+1.0 range
  • Fixed possible hangs when opening WAV/AIFF files > 2 GB or with a broken chunk structure
  • Fixed inability to open WAV/AIFF files with long paths on Windows
  • Fixed writing wrong offsets to single file cue sheets when the resampling DSP filter is enabled
  • Fixed writing invalid chapter offsets to Opus files with source sample rates other than 48 kHz
  • Fixed writing invalid MP3 bitstreams in rare cases in SuperFast mode
  • Fixed wrong length detection for MP3 files with invalid chapter data
  • Fixed parsing of cue sheets with minute/second values missing leading zeros or longer 99min
  • Fixed parsing of embedded cue sheets without FILE designations
  • Fixed ripping progress for other drives stalling while one drive is ejecting
  • Fixed inability to pause or stop single output file verification
  • Fixed log files being archived despite disabling the corresponding option
  • Fixed various issues with multi-monitor support on macOS
  • Fixed user interface glitches after closing dialogs in tabbed mode on macOS
  • Fixed Shift+Pos1/End shortcuts being interpreted by the joblist and edit fields simultaneously

• Codec support
  • Switched from libav 12.3 to FFmpeg 4.3.1 for auxiliary format support
  • Added support for using the Core Audio codec of iTunes 12.10.9 and later

Upgrading to fre:ac v1.1.3 is strongly recommended for users of any earlier releases.

The new release is available in the downloads section. Please report issues on the GitHub issue tracker or by email to support@freac.org.

fre:ac version 1.1.2 has been released on 20th June 2020.

This release introduces UI scaling to the system font size by default, adds support for theme colors and dark mode on Linux/FreeBSD, updates codecs to the latest versions and fixes several issues found in earlier releases:

• Improvements
  
  • Scale UI to adjust to system font size by default
  • Added support for theme colors and dark mode on Linux/FreeBSD
  • Improved handling of maximized window state on Linux/FreeBSD and macOS
  • Removed non-working option to not lock CD trays while ripping
  • Stop ripping before trying to eject a disc
  • Write audio data CRC to log files when ripping
  • Write MD5 checksums to log files when verifying files
  • Write log entries when replacing existing files

• Bug fixes
  
  • Fixed length of last chapter of some audio books being detected as 0:00
  • Prevent interpreting numerical IDs or dates at the beginning of file names as track numbers
  • Fixed a possible source of random crashes when adding files to the joblist
  • Fixed possible crash when importing MP4/M4A files
  • Fixed possible crash when encoding in SuperFast mode
  • Fixed some graphics glitches on macOS

Upgrading to fre:ac v1.1.2 is strongly recommended for users of any earlier releases.

The new release is available in the downloads section. Please report issues on the GitHub issue tracker or by email to support@freac.org.

The Stable channel has been updated to 143.0.7499.40/.41 for Windows and Mac as part of our early stable release to a small percentage of users. A full list of changes in this build is available in the log.

Bugfixes and minor changes:

• FTP: do not use the default impersonator during the test of the FTP connections.
• Fixed bug that reversed mount point precedence, giving priority to group mount points over user ones; user mount points now correctly take precedence.
• Fixed bug that made the %<home> placeholder not work in case "Use system credentials to log in" was selected but "Use system credentials also for accessing &files and directories" was not.

 The Stable channel has been updated to 142.0.7444.175/.176 for Windows and 142.0.7444.176 for Mac and 142.0.7444.175 for Linux, which will roll out over the coming days/weeks. A full list of changes in this build is available in the Log.

Bugfixes and minor changes:

• macOS: Fixed issue with toolbar size

Bugfixes and minor changes:

• Fixed an issue whith the certificate verification dialog not becoming scrollable on certificates with many subject alternative names
• Updated to libfilezilla 0.52.0

The Stable channel has been updated to 142.0.7444.162/.163 for Windows and 142.0.7444.162 for Mac and 142.0.7444.162 for Linux, which will roll out over the coming days/weeks. A full list of changes in this build is available in the Log.

Security Fixes and Rewards

Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.

This update includes 1 security fix. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information.

Interested in switching release channels? Find out how here. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.

This is a hotfix for 5.1.10 that fixes the DxgiAdapterService, which is used by plugins that initialize DirectX using their own interop.

The 5.1.10 update was a maintenance release that added a Romanian translation, fixed some important bugs, and updated the bundled FileType plugins.

Get the Update

There are two releases of Paint.NET:

• Microsoft Store release (recommended)

  • You can purchase it here. This helps fund development and is an alternative or supplement to sending in a donation. In addition, updates happen automatically in the background when you’re not using the app.
  • If you already have it installed, the update should happen automatically once Microsoft certifies the update, usually within the next day or so. To get the update immediately (once it’s certified), you can follow the instructions listed here.
• Classic Desktop release
  • Download the installer from the website. This is the recommended download if you don’t have Paint.NET installed. It can also be used to update the app.
  • If you already have it installed, you should be offered the update automatically within the next few days, but you can also get it immediately by going to Settings -> Updates -> Check Now.
  • Offline Installers and Portable ZIPs are available over on GitHub.

Change Log

Changes since 5.1.10:

• Fixed the DxgiAdapterService not implementing IDxgiAdapterService2 due to a bad merge conflict

Changes in 5.1.10 that were new since 5.1.9:

• New: Added a Romanian (RO) translation
• Fixed a crash (BadNumberException) when moving selected pixels off-canvas, then modifying the selection, then moving the selected pixels back on-canvas
• Changed Effects->Noise->Add Noise’s Coverage property to be a float instead of an integer
• Fixed a rare crash when the system wakes from sleep
• Fixed a small GCHandle leak
• Fixed HlslTernaryFunctionEffect when using 3 value parameters
• Added IDxgiAdapterService2 for plugin use
• Updated the bundled AvifFileType plugin to v3.13.1 (thanks @null54!) 
• Updated the bundled JPEG XL FileType plugin to v1.2.0, which improves support for HBD/HDR image loading (thanks @null54!)
• Updated the bundled WebP FileType plugin to v1.6.0 (thanks @null54!)

This is a maintenance release that adds a Romanian translation, fixes some important bugs, and updates the bundled FileType plugins.

Get the Update

There are two releases of Paint.NET:

• Microsoft Store release (recommended)

  • You can purchase it here. This helps fund development and is an alternative or supplement to sending in a donation. In addition, updates happen automatically in the background when you’re not using the app.
  • If you already have it installed, the update should happen automatically once Microsoft certifies the update, usually within the next day or so. To get the update immediately (once it’s certified), you can follow the instructions listed here.
• Classic Desktop release
  • Download the installer from the website. This is the recommended download if you don’t have Paint.NET installed. It can also be used to update the app.
  • If you already have it installed, you should be offered the update automatically within the next few days, but you can also get it immediately by going to Settings -> Updates -> Check Now.
  • Offline Installers and Portable ZIPs are available over on GitHub.

Change Log

Changes since 5.1.9:

• New: Added a Romanian (RO) translation
• Fixed a crash (BadNumberException) when moving selected pixels off-canvas, then modifying the selection, then moving the selected pixels back on-canvas
• Changed Effects->Noise->Add Noise’s Coverage property to be a float instead of an integer
• Fixed a rare crash when the system wakes from sleep
• Fixed a small GCHandle leak
• Fixed HlslTernaryFunctionEffect when using 3 value parameters
• Added IDxgiAdapterService2 for plugin use
• Updated the bundled AvifFileType plugin to v3.13.1 (thanks @null54!)
• Updated the bundled JPEG XL FileType plugin to v1.2.0, which improves support for HBD/HDR image loading
  (thanks @null54!)
• Updated the bundled WebP FileType plugin to v1.6.0 (thanks @null54!)

The Stable channel has been updated to 142.0.7444.134/.135 for Windows and 142.0.7444.135 for Mac and 142.0.7444.134 for Linux, which will roll out over the coming days/weeks. A full list of changes in this build is available in the Log.

Security Fixes and Rewards

Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.

This update includes 5 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information.

Interested in switching release channels? Find out how here. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.

Changes from 2.5.4 to 2.5.5:

Updates:

• Updated MPC Video Renderer to version 0.9.17.2472

Changes/improvements:

• Hiding of capture settings panel is now remembered.
• Automatic subtitle search now only uses OpenSubtitles if you have configured an account for it. Because we have a limited daily download quota, this choice was made to reduce unnecessary downloads.
• Added two new toolbar skins.

Fixes:

• Improved long path support for loading external subtitles.
• A few small fixes and improvements.

The Chrome team is delighted to announce the promotion of Chrome 142 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks.

Chrome 142.0.7444.59 (Linux) 142.0.7444.59/60 Windows and 142.0.7444.60 Mac contains a number of fixes and improvements -- a list of changes is available in the log. Watch out for upcoming Chrome and Chromium blog posts about new features and big efforts delivered in 142.

Security Fixes and Rewards

Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.



This update includes 20 security fixes. Below, we highlight fixes that were contributed by external researchers. Please see the Chrome Security Page for more information.

[$50000][447613211] High CVE-2025-12428: Type Confusion in V8. Reported by Man Yue Mo of GitHub Security Lab on 2025-09-26

[$50000][450618029] High CVE-2025-12429: Inappropriate implementation in V8. Reported by Aorui Zhang on 2025-10-10

[$10000][442860743] High CVE-2025-12430: Object lifecycle issue in Media. Reported by round.about on 2025-09-04

[$4000][436887350] High CVE-2025-12431: Inappropriate implementation in Extensions. Reported by Alesandro Ortiz on 2025-08-06

[N/A][439522866] High CVE-2025-12432: Race in V8. Reported by Google Big Sleep on 2025-08-18

[N/A][449760249] High CVE-2025-12433: Inappropriate implementation in V8. Reported by Google Big Sleep on 2025-10-07

[N/A][452296415] High CVE-2025-12036: Inappropriate implementation in V8. Reported by Google Big Sleep on 2025-10-15

[$3000][337356054] Medium CVE-2025-12434: Race in Storage. Reported by Lijo A.T on 2024-04-27

[$3000][446463993] Medium CVE-2025-12435: Incorrect security UI in Omnibox. Reported by Hafiizh on 2025-09-21

[$2000][40054742] Medium CVE-2025-12436: Policy bypass in Extensions. Reported by Luan Herrera (@lbherrera_) on 2021-02-08

[$2000][446294487] Medium CVE-2025-12437: Use after free in PageInfo. Reported by Umar Farooq on 2025-09-20

[$1000][433027577] Medium CVE-2025-12438: Use after free in Ozone. Reported by Wei Yuan of MoyunSec VLab on 2025-07-20

[TBD][382234536] Medium CVE-2025-12439: Inappropriate implementation in App-Bound Encryption. Reported by Ari Novick on 2024-12-04

[N/A][430555440] Low CVE-2025-12440: Inappropriate implementation in Autofill. Reported by Khalil Zhani on 2025-07-09

[N/A][444049512] Medium CVE-2025-12441: Out of bounds read in V8. Reported by Google Big Sleep on 2025-09-10

[TBD][452071845] Medium CVE-2025-12443: Out of bounds read in WebXR. Reported by Aisle Research on 2025-10-15

[$3000][390571618] Low CVE-2025-12444: Incorrect security UI in Fullscreen UI. Reported by syrf on 2025-01-18

[$1000][428397712] Low CVE-2025-12445: Policy bypass in Extensions. Reported by Thomas Greiner on 2025-06-29

[$1000][444932667] Low CVE-2025-12446: Incorrect security UI in SplitView. Reported by Hafiizh on 2025-09-14

[TBD][442636157] Low CVE-2025-12447: Incorrect security UI in Omnibox. Reported by Khalil Zhani on 2025-09-03





We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.