❌

Normale weergave

Ontvangen β€” 28 Maart 2026 ⏭ Software
Ontvangen β€” 27 Maart 2026 ⏭ Software
Ontvangen β€” 26 Maart 2026 ⏭ Software

OpenVINO AI Plugins are now available for macOS

βœ‡Audacity
26 Maart 2026 om 23:05

OpenVINO AI Plugins are now available for macOS

By Leo Wattenberg

Wednesday, June 11, 2025

With Audacity 3.7.4, we finally are adding macOS support to the Intel OpenVINO AI plugins. Once you’ve downloaded Audacity 3.7.4 and downloaded the OpenVINO plugins (and installed both), you should find them in Effects β†’ OpenVINO AI Effects.

As a reminder, these effects are completely free and run on your own machine, no internet connection required.

The following effects are available:

  • Music separation
    Separate a mono or stereo track into individual stems -- Drums, Bass, Vocals, & Other Instruments.
  • Noise suppression
    Reduce background noise in a recording. Works best on spoken word audio.
  • Music generation and continuation
    Uses MusicGen LLM to generate snippets of music, or to generate a continuation of an existing snippet of music.
  • Whisper transcription
    Transcribe audio to text using OpenAI's Whisper model. Tip: You can export the resulting label track as a subtitle file via File β†’ Export other β†’ Export labels.
  • Audio Super resolution
    Increase the sampling rate of an audio signal – in other words, it upsamples audio to improve its fidelity, clarity, or compatibility with high-resolution standards. Useful for older 8kHz recordings, such as telephone calls.

Feedback wanted

As this is the first release of these plugins for macOS, we’re considering them to be a beta of sorts: While we’ve tested them on our machines, there’s only so many devices flying about in our team. Thus, if you’ve got moment to try and test them on yours, we’d be greatful. We’re especially interested in the following information:

  • Did the effects you tried work?
  • What kind of mac model (year; Intel or Apple Silicon) and OS version are you using?
  • What kind of binary are you using? (Apple Silicon/ARM or Intel/x64)
  • Did you run into any trouble during the process of installing or using the plugins?

You can send us this feedback through various channels:

How to download & release notes

You can download Audacity 3.7.4 here and the OpenVINO plugin there. We will also have them show up in the Get Effects button inside Audacity in the near future.

From our testing, it appears that in some cases, the Intel binaries perform better, even on Apple Silicon macs. You may want to experiment with what binary you use.

The model downloader and installer supports macOS 12 onwards. If you compile from source or get the models from elsewhere, you might be able to get it running from OSX 10.15 (Intel macs) or macOS 11 (Apple Silicon macs) as well.

  •  
  • ↗️

Audacity turns 25 years old!

βœ‡Audacity
26 Maart 2026 om 23:05

Audacity turns 25 years old!

By Leo Wattenberg

Wednesday, May 28, 2025

On this day, 25 years ago, the very first public version of Audacity was released, Audacity 0.8.

Audacity 0.8 was very different to what we have today: It couldn’t record, it couldn’t use plugins, and it could only export as WAV, AIFF, SF and AU.

A picture of Audacity 0.8, showing a very sparse UI with practically no features. Only Amplify, Echo and Fade in/out are available as effects.

Since then, a lot has happened. Audacity 1.0 was released two years later, sporting a logo and layout that’s still recognizable today. PCs have turned notably less boxy and beige, and are much faster as well. They’re so fast in fact, that many features which would have been unthinkable 25 years ago are now very much possible - and even expected. We have worked tirelessly to improve Audacity’s audio editing capabilities, adding features like realtime effects, non-destructive edits and time stretching, a master channel and even some AI-powered effects which are actually useful.

If you’re curious to learn more about Audacity’s history, our product owner Martin Keary released a video about it when he took over, and our designer Leo Wattenberg ran Audacity’s source code through a visualizer to show the evolution of files within Audacity.

What’s next for Audacity

We’re planning to release another minor patch (Audacity 3.7.4) in the next couple weeks, which among various bug fixes finally brings aforementioned AI effects to macOS.

In addition to that, we’re still working hard on Audacity 4.0, which won’t be quite yet a DAW – but will tackle a lot of UX snags, which made Audacity so far more annoying to use than necessary. We will soon post an update on what to expect exactly for Audacity 4.0.

Let’s celebrate with Audacity merch!

After 25 years of making it rather difficult to send any money our way, we finally have opened up a merch store at merch.audacityteam.org. Every purchase made will help support our full-size development team, and accelerate Audacity’s progress to becoming not just the free option for audio editing - but the best option.

We’ll add more designs over the coming months - follow us on YouTube or join our Discord to get notified when new merch drops!

  •  
  • ↗️

Audacity 3.7

βœ‡Audacity
26 Maart 2026 om 23:05

Audacity 3.7

By Leo Wattenberg

Wednesday, October 30, 2024

Audacity 3.7 has been released!

It features everyone’s favorite β€œbug fixes and performance improvements”. See the full changelog for details.

Other than that ­– there’s nothing exciting to see here. Which in itself is exciting! The reason for this very thin release is that we’ve focused most of our attention towards Audacity 4.0 instead! Audacity 4 will feature a complete remake of the UI and is still quite some ways out. We’ll update you on scope and progress on that over the coming months.

In the meantime: Check out the MuseHub for some cool plugins.

  •  
  • ↗️
Ontvangen β€” 25 Maart 2026 ⏭ Software

Early Stable Update for Desktop

βœ‡Google Chrome
25 Maart 2026 om 19:24

Β The Stable channel has been updated to 147.0.7727.24/.25 for Windows and Mac as part of our early stable release to a small percentage of users. A full list of changes in this build is available in the log.

You can find more details about early Stable releases here.

Interested in switching release channels? Β Find out how here. If you find a new issue, please let us know by filing a bug. The community help forum is also a great place to reach out for help or learn about common issues.


Srinivas Sista

Google Chrome

  •  
  • ↗️
Ontvangen β€” 24 Maart 2026 ⏭ Software

Firefox

βœ‡Mozilla Firefox
3 April 2026 om 03:55

New

  • View two pages side-by-side in a single window with the new Split View feature that makes it easier to compare information, research topics or work across two pages at once. To create a split view, select one or two tabs and choose Add to Split View or Open in Split View.

    A screenshot of two pages side by side in split view

  • Firefox now offers a free built-in VPN. Whether you’re using public Wi-Fi while traveling, searching for sensitive health information, or shopping for something personal, this feature gives you a simple way to stay protected. Once you sign in and turn it on, you can hide your location and IP address by routing it through a secure proxy while you browse in Firefox. You will get 50 GB of protection every month, with the option to turn it on or off for specific websites. This feature is progressively rolling out in the US, UK, Germany and France starting today.

    Screenshot of the new VPN feature in use

    Enterprise note: This feature is not available in enterprise environments and is not being rolled out to users with enterprise policies. While it can currently be enabled manually, administrators will have the ability to disable it via enterprise policy starting April 7. In the meantime, organizations can use the BlockAboutConfig policy to prevent manual enablement.

    This feature is part of a progressive roll out.

    What is a progressive roll out?

    Certain new Firefox features are released gradually. This means some users will see the feature before everyone does. This approach helps to get early feedback to catch bugs and improve behavior quickly, meaning more Firefox users overall have a better experience.

  • Many PDF files will now load significantly faster thanks to hardware acceleration.

  • Firefox now automatically blocks notifications and permanently revokes permissions for any website flagged as malicious by SafeBrowsing. This prevents unsafe sites from sending background notifications to users, commonly used for ads, spam or phishing.

  • You can now add a Share button to your toolbar via Customize Toolbar, making it easy to share the current tab using your Windows or macOS system sharing options.

  • Address Autofill is enabled for users in Australia, India, Italy, Poland and Austria.

  • Explore more of the web with new on-device translation support for Bosnian, Norwegian BokmΓ₯l, Serbian and Thai β€” plus improved accuracy for Croatian.

Firefox Labs

  • Tab notes feature that lets you attach a short note to a web page is now available in Firefox Labs. You can use notes to remember why you opened a page, what you planned to do next or any details you want to revisit later. Please give notes a try and share your feedback on what works well and what can be improved.

    A screenshot of the tab notes dialog open

Fixed

  • Increased robustness of HTTP/3 upload performance for unstable network conditions.

  • Various security fixes.

Changed

  • The TrustPanel combines the privacy and security panels accessed from the address bar to give the user one place to check the Privacy and Security settings of the current page. Learn more.

    TrusPanel Screenshot

  • Security has been strengthened by tightening the requirements for JavaScript files that can be loaded in the parent process, providing additional defense in depth against potential threats.

  • On Linux, Firefox will now default to the XDG portal file picker if available, rather than the GTK3 one, which is usually better integrated with the user's desktop environment, and more powerful.

  • Firefox error pages have a fresh new look, with updated visuals that better match the overall feel of Firefox. The redesigned pages create a more cohesive experience while making it clearer what went wrong.

    A screenshot of the revamped error page

  • On Windows, Firefox will use the modern Windows.Devices.Geolocation API for geolocation instead of Windows 7 location API.

Developer

Web Platform

  • showPicker() now supports text-based <input> elements with an associated <datalist>, displaying the autofill dropdown. See documentation.

  • The functions xywh() and rect() were previously implemented for the clip-path and offset-path properties. They are now also available for the shape-outside property.

  • The math value of the CSS font-family is now supported and used by default for MathML's <math> element. It enables Web developers to indicate special fonts with advanced math features should be used. Firefox will rely on the serif font for mathematics defined in Firefox preferences.

  • Added support for the HTML attribute popover="hint".

  • Enabled media element pseudo-classes, such as :playing, :paused…

  • Enabled the spec-compliant HTMLMediaElement.captureStream() API.

  • Added support for closing popovers & dialogs with the Android Back Button, and implemented the CloseWatcher API for handling this in script.

  • The new Reporting API provides a generic reporting mechanism for web applications to use to make reports available based on various platform features (for example Content Security Policy, Permissions-Policy or feature deprecation reports) in a consistent manner.

Community Contributions

  •  
  • ↗️
Ontvangen β€” 23 Maart 2026 ⏭ Software

Stable Channel Update for Desktop

βœ‡Google Chrome
24 Maart 2026 om 01:23

The Stable channel has been updated to 146.0.7680.164/165 for Windows/MacΒ  andΒ 146.0.7680.164 for Linux, which will roll out over the coming days/weeks. A full list of changes in this build is available in theΒ Log

Security Fixes and Rewards


Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.


This update includes 8 security fixes. Please see the Chrome Security Page for more information.


[$7000][485397284] High CVE-2026-4673: Heap buffer overflow in WebAudio. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-02-18

[TBD][488188166] High CVE-2026-4674: Out of bounds read in CSS. Reported by Syn4pse on 2026-02-27

[TBD][488270257] High CVE-2026-4675: Heap buffer overflow in WebGL. Reported by 86ac1f1587b71893ed2ad792cd7dde32 on 2026-02-27

[TBD][488613135] High CVE-2026-4676: Use after free in Dawn. Reported by 86ac1f1587b71893ed2ad792cd7dde32 on 2026-03-01

[TBD][490533968] High CVE-2026-4677: Out of bounds read in WebAudio. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-03-07

[TBD][491164019] High CVE-2026-4678: Use after free in WebGPU. Reported by Google on 2026-03-10

[TBD][491516670] High CVE-2026-4679: Integer overflow in Fonts. Reported by GF, Un3xploitable Of DeadSec on 2026-03-11

[TBD][491869946] High CVE-2026-4680: Use after free in FedCM. Reported by Shaheen Fazim on 2026-03-12


We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.


Many of our security bugs are detected using AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, or AFL.


Interested in switching release channels? Find out howΒ here. If you find a new issue, please let us know byΒ filing a bug. TheΒ community help forumΒ is also a great place to reach out for help or learn about common issues.

Srinivas Sista

Google Chrome
  •  
  • ↗️
Ontvangen β€” 19 Maart 2026 ⏭ Software

2.6.4

βœ‡MPC-HC
Door: clsid2
4 April 2026 om 18:50

Changes from 2.6.3 to 2.6.4:

Updates:

  • Updated LAV Filters to version 0.81-7-g8c4ee

Changes:

  • For some users it was unclear that all nodes in the settings tree corresponded to pages, so now there is a leaf node for all pages.
  • Added hotkey for toggling "Override all styles".

Fixes:

  • Several small fixes and improvements.

  •  
  • ↗️
Ontvangen β€” 18 Maart 2026 ⏭ Software

Stable Channel Update for Desktop

βœ‡Google Chrome
20 Maart 2026 om 02:31

The Stable channel has been updated to 146.0.7680.153/154 for Windows/MacΒ  andΒ 146.0.7680.153 for Linux, which will roll out over the coming days/weeks. A full list of changes in this build is available in theΒ Log

Security Fixes and Rewards
Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.


This update includes 26 security fixes. Please see the Chrome Security Page for more information.


[TBD][475877320] Critical CVE-2026-4439: Out of bounds memory access in WebGL. Reported by Goodluck on 2026-01-15
[TBD][485935305] Critical CVE-2026-4440: Out of bounds read and write in WebGL. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-02-20
[TBD][489381399] Critical CVE-2026-4441: Use after free in Base. Reported by Google on 2026-03-03
[TBD][484751092] High CVE-2026-4442: Heap buffer overflow in CSS. Reported by Syn4pse on 2026-02-16
[TBD][485292589] High CVE-2026-4443: Heap buffer overflow in WebAudio. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-02-18
[TBD][486349161] High CVE-2026-4444: Stack buffer overflow in WebRTC. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-02-21
[TBD][486421953] High CVE-2026-4445: Use after free in WebRTC. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-02-22
[TBD][486421954] High CVE-2026-4446: Use after free in WebRTC. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-02-22
[TBD][486657483] High CVE-2026-4447: Inappropriate implementation in V8. Reported by Erge on 2026-02-23
[TBD][486972661] High CVE-2026-4448: Heap buffer overflow in ANGLE. Reported by M. Fauzan Wijaya (Gh05t666nero) on 2026-02-23
[TBD][487117772] High CVE-2026-4449: Use after free in Blink. Reported by Syn4pse on 2026-02-24
[TBD][487746373] High CVE-2026-4450: Out of bounds write in V8. Reported by qymag1c on 2026-02-26
[TBD][487768779] High CVE-2026-4451: Insufficient validation of untrusted input in Navigation. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-02-26
[TBD][487977696] High CVE-2026-4452: Integer overflow in ANGLE. Reported by cinzinga on 2026-02-26
[TBD][488400770] High CVE-2026-4453: Integer overflow in Dawn. Reported by sweetchip on 2026-02-27
[TBD][488585488] High CVE-2026-4454: Use after free in Network. Reported by heapracer (@heapracer) on 2026-03-01
[TBD][488585504] High CVE-2026-4455: Heap buffer overflow in PDFium. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-03-01
[TBD][488617440] High CVE-2026-4456: Use after free in Digital Credentials API. Reported by sean wong on 2026-02-28
[TBD][488803413] High CVE-2026-4457: Type Confusion in V8. Reported by Zhenpeng (Leo) Lin at depthfirst on 2026-03-01
[TBD][489619753] High CVE-2026-4458: Use after free in Extensions. Reported by Shaheen Fazim on 2026-03-04
[TBD][490246422] High CVE-2026-4459: Out of bounds read and write in WebAudio. Reported by Jihyeon Jeong (Compsec Lab, Seoul National University / Research Intern) on 2026-03-06
[TBD][490254124] High CVE-2026-4460: Out of bounds read in Skia. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-03-06
[TBD][490558172] High CVE-2026-4461: Inappropriate implementation in V8. Reported by Google on 2026-03-07
[TBD][491080830] High CVE-2026-4462: Out of bounds read in Blink. Reported by heapracer (@heapracer) on 2026-03-09
[TBD][491358681] High CVE-2026-4463: Heap buffer overflow in WebRTC. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-03-10
[TBD][487208468] Medium CVE-2026-4464: Integer overflow in ANGLE. Reported by heesun on 2026-02-24


We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.

Many of our security bugs are detected using AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, or AFL.

Interested in switching release channels? Find out howΒ here. If you find a new issue, please let us know byΒ filing a bug. TheΒ community help forumΒ is also a great place to reach out for help or learn about common issues.


Srinivas Sista

Google Chrome
  •  
  • ↗️
Ontvangen β€” 16 Maart 2026 ⏭ Software

FileZilla Client 3.70.0-rc1 released

βœ‡FileZilla
Door: Tim Kosse
16 Maart 2026 om 21:21

New features:

  • SFTP support is now based on the fzssh library

Bugfixes and minor changes:

  • Fix detection of OTP requests from FileZilla Pro Enterprise Server if using non-default FTP encryption options
  • MSW: Improve handling of volumes mounted as path instead of as drive letter
  • *nix, macOS: Remove custom send buffer option, rely on operating system auto-tuning
  •  
  • ↗️
Ontvangen β€” 14 Maart 2026 ⏭ Software

Stable Channel Update for Desktop

βœ‡Google Chrome
14 Maart 2026 om 02:15

The Stable channel has been updated to 146.0.7680.80 for Windows/MacΒ  andΒ 146.0.7680.80 for Linux, which will roll out over the coming days/weeks. A full list of changes in this build is available in theΒ Log


Security Fixes and Rewards

Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.


This update includes 1 security fix. Please see the Chrome Security Page for more information.


[N/A][491421267] High CVE-2026-3909: Out of bounds write in Skia. Reported by Google Threat Analysis Group on 2026-03-10


Google is aware that an exploit for CVE-2026-3909 exists in the wild.


We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.

Many of our security bugs are detected using AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, or AFL.




Interested in switching release channels? Find out howΒ here. If you find a new issue, please let us know byΒ filing a bug. TheΒ community help forumΒ is also a great place to reach out for help or learn about common issues.


Srinivas Sista

Google Chrome
  •  
  • ↗️
Ontvangen β€” 13 Maart 2026 ⏭ Software

CPU-Z 2.19

βœ‡CPU-Z
13 Maart 2026 om 22:10
  • AMD Ryzen AI 7/PRO 450G/E, AI 5/PRO 440G/E & 435G/E (Kraken Point 2).
  • AMD Ryzen AI 9 HX 470.
  • Fix AMD Ryzen 5 5500U (Lucienne) reported as 7350U (Cezanne).
  • Preliminary support of Intel Wildcat Lake.
  • CQDIMM (4-ranks CUDIMM) memory support.
  • Fix DLL hijacking vulnerability thanks to Kwangyun Kem.
  • New Chinese translation thanks to Shinjo Kurumi.
  •  
  • ↗️

Stable Channel Update for Desktop

βœ‡Google Chrome
24 Maart 2026 om 20:51

The Stable channel has been updated to 146.0.7680.75/76 for Windows/MacΒ  andΒ 146.0.7680.75Β for Linux, which will roll out over the coming days/weeks. A full list of changes in this build is available in theΒ Log

Security Fixes and Rewards

Updated 2026-03-13: The previous version of these notes included CVE-2026-3909, the fix
for which will instead be available in a future update.

Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.

This update includes 1 security fix. Please see the Chrome Security Page for more information.

[N/A][491410818] High CVE-2026-3910: Inappropriate implementation in V8. Reported by Google Threat Analysis Group on 2026-03-10

Google is aware that an exploit for CVE-2026-3910 exists in the wild.

We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.

Many of our security bugs are detected using AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, or AFL.


Interested in switching release channels? Find out howΒ here. If you find a new issue, please let us know byΒ filing a bug. TheΒ community help forumΒ is also a great place to reach out for help or learn about common issues.


Srinivas Sista

Google Chrome
  •  
  • ↗️
Ontvangen β€” 10 Maart 2026 ⏭ Software

Stable Channel Update for Desktop

βœ‡Google Chrome
11 Maart 2026 om 22:59

The Chrome team is delighted to announce the promotion of Chrome 146 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks.

ChromeΒ 146.0.7680.71 (Linux)Β 146.0.7680.71/72Β Windows/MacΒ contains a number of fixes and improvements -- a list of changes is available in theΒ log. Watch out for upcomingΒ ChromeΒ andΒ ChromiumΒ blog posts about new features and big efforts delivered in 146.

Security Fixes and Rewards

Note: Access to bug details and links may be kept restricted until a majority of users are updated with a fix. We will also retain restrictions if the bug exists in a third party library that other projects similarly depend on, but haven’t yet fixed.


This update includes 29 security fixes. Please see the Chrome Security Page for more information.

[$33000][483445078] Critical CVE-2026-3913: Heap buffer overflow in WebML. Reported by Tobias Wienand on 2026-02-10

[$43000][481776048] High CVE-2026-3914: Integer overflow in WebML. Reported by cinzinga on 2026-02-04

[$43000][483971526] High CVE-2026-3915: Heap buffer overflow in WebML. Reported by Tobias Wienand on 2026-02-12

[$36000][482828615] High CVE-2026-3916: Out of bounds read in Web Speech. Reported by Grischa Hauser on 2026-02-09

[$11000][483569512] High CVE-2026-3917: Use after free in Agents. Reported by Syn4pse on 2026-02-11

[$10000][483853103] High CVE-2026-3918: Use after free in WebMCP. Reported by Syn4pse on 2026-02-12

[$2000][444176961] High CVE-2026-3919: Use after free in Extensions. Reported by Huinian Yang (@vmth6) of Amber Security Lab, OPPO Mobile Telecommunications Corp. Ltd. on 2025-09-10

[TBD][482875307] High CVE-2026-3920: Out of bounds memory access in WebML. Reported by Google on 2026-02-09

[TBD][484946544] High CVE-2026-3921: Use after free in TextEncoding. Reported by Pranamya Keshkamat & Cantina.xyz on 2026-02-17

[TBD][485397139] High CVE-2026-3922: Use after free in MediaStream. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-02-18

[TBD][485935314] High CVE-2026-3923: Use after free in WebMIDI. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-02-20

[TBD][487338366] High CVE-2026-3924: Use after free in WindowDialog. Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-02-25

[$10000][418214610] Medium CVE-2026-3925: Incorrect security UI in LookalikeChecks. Reported by NDevTK and Alesandro Ortiz on 2025-05-17

[$7000][478659010] Medium CVE-2026-3926: Out of bounds read in V8. Reported by qymag1c on 2026-01-26

[$3000][474948986] Medium CVE-2026-3927: Incorrect security UI in PictureInPicture. Reported by Barath Stalin K on 2026-01-11

[$2000][435980394] Medium CVE-2026-3928: Insufficient policy enforcement in Extensions. Reported by portsniffer443 on 2025-08-03

[$2000][477180001] Medium CVE-2026-3929: Side-channel information leakage in ResourceTiming. Reported by Povcfe of Tencent Security Xuanwu Lab on 2026-01-20

[$1000][476898368] Medium CVE-2026-3930: Unsafe navigation in Navigation. Reported by Povcfe of Tencent Security Xuanwu Lab on 2026-01-19

[TBD][417599694] Medium CVE-2026-3931: Heap buffer overflow in Skia. Reported by Huinian Yang (@vmth6) of Amber Security Lab, OPPO Mobile Telecommunications Corp. Ltd. on 2025-05-14

[TBD][478296121] Medium CVE-2026-3932: Insufficient policy enforcement in PDF. Reported by Ayato Shitomi on 2026-01-23

[TBD][478783560] Medium CVE-2026-3934: Insufficient policy enforcement in ChromeDriver. Reported by Povcfe of Tencent Security Xuanwu Lab on 2026-01-26

[TBD][479326680] Medium CVE-2026-3935: Incorrect security UI in WebAppInstalls. Reported by Barath Stalin K on 2026-01-28

[TBD][481920229] Medium CVE-2026-3936: Use after free in WebView. Reported by Am4deu$ on 2026-02-05

[$3000][473118648] Low CVE-2026-3937: Incorrect security UI in Downloads. Reported by Abhishek Kumar on 2026-01-03

[$2000][474763968] Low CVE-2026-3938: Insufficient policy enforcement in Clipboard. Reported by vicevirus on 2026-01-10

[$1000][40058077] Low CVE-2026-3939: Insufficient policy enforcement in PDF. Reported by NDevTK on 2021-11-30

[$1000][470574526] Low CVE-2026-3940: Insufficient policy enforcement in DevTools. Reported by Jorian Woltjer, Mian, bug_blitzer on 2025-12-21

[$1000][474670215] Low CVE-2026-3941: Insufficient policy enforcement in DevTools. Reported by Lyra Rebane (rebane2001) on 2026-01-10

[N/A][475238879] Low CVE-2026-3942: Incorrect security UI in PictureInPicture. Reported by Barath Stalin K on 2026-01-12

We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.

Interested in switching release channels? Find out howΒ here. If you find a new issue, please let us know byΒ filing a bug. TheΒ community help forumΒ is also a great place to reach out for help or learn about common issues.


Srinivas Sista

Google Chrome

  •  
  • ↗️

Firefox

βœ‡Mozilla Firefox
21 Maart 2026 om 06:50

Fixed

  • Fixed an issue where searches entered in the Firefox Home search field were incorrectly redirected to the address bar for some users who had disabled search handoff behavior via advanced settings. (Bug 2017049)

  • Fixed an issue where some web-based rich text editors stopped applying formatting, such as bold or italic. (Bug 2020927)

  • Fixed an issue where videos could autoplay unexpectedly on YouTube despite autoplay being blocked, particularly impacting screen reader users. (Bug 2020233)

  • Fixed an issue that caused some absolutely positioned elements meant to be centered, for example, using margin: auto with inset: 0, to appear left-aligned on initial load. (Bug 2017440)

  • Fixed an issue where the β€œSwitch to Tab” suggestion in the address bar appeared blank for pages without a title. (Bug 2020341)

  • Fixed an issue that could reduce video quality on Windows systems using NVIDIA GPUs with Video Super Resolution enabled. (Bug 2019515)

  • Various security fixes.

  •  
  • ↗️

HeidiSQL v12.16

βœ‡HeidiSQL
Door: github-actions[bot]
10 Maart 2026 om 18:00

12.16 - 2026-03-10

⛰️ Features

  • (packaging) Add libqt6pas dependency - (a3e6d0b)
  • (packaging) Ship qt6 build in deb package, enhance control file fields - (992b673)
  • (ui) Turn all TEdit's with NumbersOnly into TSpinEditEx - (96bb466)
  • Select just created table copy - (18e9431)
  • Add toolbar button for toggling reverse foreign key listing, so the user has the chance to disable its potentially long during query - (938f303)
  • Reverse foreign keys on "Foreign keys" tab in table editor - (ca48343)
  • Add menu item Edit > Copy column names - (ce93931)
  • Prevent loading an SQL file multiple times into an editor - (153e61d)
  • Add sshpass.exe v1.0.6 for Windows, and refactor Windows installer script - (d79d462)
  • Inject app name and version into potentially long during SQL queries for the SQL export - (93e1b39)
  • Run user startup script in DoAfterConnect call, which includes reconnects - (1b27b1d)
  • Add "Display" main menu, move some spread items there, and add two items for toggling log panel and tree filters - (c0fbcff)
  • Support BOOLEAN column type in MySQL - (e796ad1)
  • Re-enable clickable "Analyze query" label on host > processes - (678c7b8)
  • Create SQL export option for wrapping DML commands in a BEGIN/COMMIT transaction - (5560454)
  • Display approximate row count of tables in database tab on MS SQL - (146044f)
  • Support full table status option in SQLite, showing "Rows" from COUNT(*) for each table - (422935a)
  • Add security policy for supported versions and reporting - (7ce4a23)
  • Prefer KILL QUERY over KILL on MySQL and MariaDB, when using the "Kill process" menu item in Host > processlist - (b3743d8)
  • New attempt to leave the main window invisible behind the session manager - (be5322c)
  • Show virtual, stored and hidden columns in SQLite - (0a87a73)

πŸš€ Enhancements

  • Move color scheme submenu from Tools to Display menu - (f7f90e8)
  • Export tables which are hidden through the table filter - (42e5277)

πŸ› Bug Fixes

  • Crash on macOS, due to running Connection.ShowWarnings directly in the TQueryThread - (d62807a)
  • Less aggressive debug compile mode, made the app unresponsive when trying to close - (8d48099)
  • Two more exception causes found in uploaded reports - (e33ea1d)
  • Sporadic "no database selected" when updating grid header with row details - (c9eb765)
  • Wrong use of Copy(), which is one-based not zero-based, and remove translated appendix to snipped log message which may use critical chars and confuse SynEdit - (e3fc3f5)
  • Various crash causes, reported in uploaded bug reports - (6215d19)
  • Missing required package LazControls for TSpinEditEx - (519a84a)
  • Remove default keystrokes from query editor: 2x ecRedo and 1x ecDeleteLine - (2bc9d78)
  • Wrong SQL on MS SQL when renaming table per table editor - (a763fd1)
  • Use default brew path to sshpass on macOS - (b7c3d07)
  • Status bar text gets written into the panel right besides the current one, on Linux/macOS - (dfb86d5)
  • Several crash causes Host subtabs when connection is lost externally - (1029657)
  • Non stored global setting for "sort alphabetically" checkbox in column selection - (0ccb1ac)
  • High CPU load and unresponsiveness through SynEdit highlighter when starting to edit large text in popup editor - (676fcd7)
  • Crash when enabling TShellListView.MultiSelect in OnFormShow, now sets options per setter method, before FormShow - (2acce35)
  • Crash on right-click in empty area of query result grid - (6309305)
  • Data grid context menu not opening after click in empty area - (10fc117)
  • Repaint columns list after move up/down a column - (6a0cbe3)
  • Out-of-memory error in call to sqlite3_open() on a non-existent SQLite database file - (e93924f)
  • Font bold + italic setting not stored in settings - (cc5b811)
  • Potentially crashing typecast in LoadRecentFilter - (da07591)
  • Non-themed white area on TTabControl, fix from zamtmn/metadarkstyle#75 - (7554364)
  • Forgotten files in c01a439 - (8098296)
  • Initial FK names assigned in TfrmTableEditor.listForeignKeysNewText() were lacking the referencing table's table name in case the referencing table was not created yet (pr from Jochen Neubeck) - (d8cd61c)
  • Wrong schema queries in SQLite, always shows columns and indexes of first database file - (7072986)
  • BIT values in MS SQL grid queries prefixed with MySQL b'' style - (7456c38)
  • Random crash in dodgy typecast TEdit/TEditButton - (37add0f)
  • Crash when moving added column to very bottom - (b739799)
  • Load any foreign keys, anyway if the user owns them, on PostgreSQL - (dbab4cb)
  • Wrong captions on quick filter actions shown in preferences > shortcuts - (3e0bf91)
  • Crash in OpenTextFile, for a 0-bytes file - override the encoding to one without BOM - (27e26a6)
  • Keep column default value in table editor, when user changes its datatype to one in the same category as before (int => bigint) - (3c518ad)
  • Trim away spaces around name of routine parameter silently - (b681ebf)
  • Re-enable dropping sql files on main form - (314db47)
  • Missing translations, and rephrase the "themes not supported" text - (7dfad02)
  • TDBQuery.TableName always returned an empty string on MS SQL - (520a90c)
  • TDBQuery.Col() crashes with "Column not available" on certain locales - (a01acd1)
  • Reset DesignTimePPI in all forms from 120 to the default 96, let the IDE scale controls down and move or add some defaults like LCLVersion. - (e635ae5)
  • Allow $$ as delimiter again on non-PostgreSQL connections, and ` on non-MySQL connections - (71bb25b)

🚜 Refactor

  • Migration from Array[TSQLSpecifityId] to TSqlProvider - (31ba8bf)

πŸ“š Documentation

  • (ui) Mark VCL styles as deprecated - (1ce80ea)

🎨 Styling

  • (ui) Remove border around reverse foreign key list - (6ed145e)

βš™οΈ Miscellaneous Tasks

  • Bump version for v12.16 release - (d141124)
  • Move OpenSSL license file out of the dll folder - (5772d09)
  • Add Wine deprecation note used in the Windows builds - (5e34fa9)

Localize

  • Update compiled translation files from Transifex - (a5f1a19)

Ui

  • Hint the user in which path we are going to look for sshpass (macOS and Windows) - (86a96bd)

Contributors

  •  
  • ↗️
Ontvangen β€” 8 Maart 2026 ⏭ Software

Paint.NET 5.1.12 is now available

βœ‡Paint.net
Door: Rick Brewster
8 Maart 2026 om 19:50

This is a small update that adds a new translation (Kazakh) and updates the bundled DDS and JPEG XL FileType plugins to their latest versions.

Get the Update

There are two releases of Paint.NET:

  • Microsoft Store release (recommended)
    • You can purchase it here. This helps fund development and is an alternative or supplement to sending in a donation. In addition, updates happen automatically in the background when you’re not using the app.
    • If you already have it installed, the update should happen automatically once Microsoft certifies the update, usually within the next day or so. To get the update immediately (once it’s certified), you can follow the instructions listed here.
  • Classic Desktop release
    • Download the installer from the website. This is the recommended download if you don’t have Paint.NET installed. It can also be used to update the app.
    • If you already have it installed, you should be offered the update automatically within the next few days, but you can also get it immediately by going to βš™ Settings -> Updates -> Check Now.
    • Offline Installers and Portable ZIPs are available over on GitHub.

Change Log

Changes since 5.1.11:

  • New: Added a Kazakh (kk) translation
  • Updated the bundled DDS FileType Plus plugin to v1.12.14 (thanks @null54!)
  • Updated the bundled JPEG XL FileType plugin to v1.2.1 (thanks @null54!)

  •  
  • ↗️

Paint.NET 5.1.11 is now available

βœ‡Paint.net
Door: Rick Brewster
10 November 2025 om 03:38

This is a hotfix for 5.1.10 that fixes the DxgiAdapterService, which is used by plugins that initialize DirectX using their own interop.

The 5.1.10 update was a maintenance release that added a Romanian translation, fixed some important bugs, and updated the bundled FileType plugins.

Get the Update

There are two releases of Paint.NET:

  • Microsoft Store release (recommended)
    • You can purchase it here. This helps fund development and is an alternative or supplement to sending in a donation. In addition, updates happen automatically in the background when you’re not using the app.
    • If you already have it installed, the update should happen automatically once Microsoft certifies the update, usually within the next day or so. To get the update immediately (once it’s certified), you can follow the instructions listed here.
  • Classic Desktop release
    • Download the installer from the website. This is the recommended download if you don’t have Paint.NET installed. It can also be used to update the app.
    • If you already have it installed, you should be offered the update automatically within the next few days, but you can also get it immediately by going to βš™ Settings -> Updates -> Check Now.
    • Offline Installers and Portable ZIPs are available over on GitHub.

Change Log

Changes since 5.1.10:

  • Fixed the DxgiAdapterService not implementing IDxgiAdapterService2 due to a bad merge conflict

Changes in 5.1.10 that were new since 5.1.9:

  • New: Added a Romanian (RO) translation
  • Fixed a crash (BadNumberException) when moving selected pixels off-canvas, then modifying the selection, then moving the selected pixels back on-canvas
  • Changed Effects->Noise->Add Noise’s Coverage property to be a float instead of an integer
  • Fixed a rare crash when the system wakes from sleep
  • Fixed a small GCHandle leak
  • Fixed HlslTernaryFunctionEffect when using 3 value parameters
  • Added IDxgiAdapterService2 for plugin use
  • Updated the bundled AvifFileType plugin to v3.13.1 (thanks @null54!)Β 
  • Updated the bundled JPEG XL FileType plugin to v1.2.0, which improves support for HBD/HDR image loading (thanks @null54!)
  • Updated the bundled WebP FileType plugin to v1.6.0 (thanks @null54!)

  •  
  • ↗️

Paint.NET 5.1.10 is now available

βœ‡Paint.net
Door: Rick Brewster
10 November 2025 om 00:18

This is a maintenance release that adds a Romanian translation, fixes some important bugs, and updates the bundled FileType plugins.

Get the Update

There are two releases of Paint.NET:

  • Microsoft Store release (recommended)
    • You can purchase it here. This helps fund development and is an alternative or supplement to sending in a donation. In addition, updates happen automatically in the background when you’re not using the app.
    • If you already have it installed, the update should happen automatically once Microsoft certifies the update, usually within the next day or so. To get the update immediately (once it’s certified), you can follow the instructions listed here.
  • Classic Desktop release
    • Download the installer from the website. This is the recommended download if you don’t have Paint.NET installed. It can also be used to update the app.
    • If you already have it installed, you should be offered the update automatically within the next few days, but you can also get it immediately by going to βš™ Settings -> Updates -> Check Now.
    • Offline Installers and Portable ZIPs are available over on GitHub.

Change Log

Changes since 5.1.9:

  • New: Added a Romanian (RO) translation
  • Fixed a crash (BadNumberException) when moving selected pixels off-canvas, then modifying the selection, then moving the selected pixels back on-canvas
  • Changed Effects->Noise->Add Noise’s Coverage property to be a float instead of an integer
  • Fixed a rare crash when the system wakes from sleep
  • Fixed a small GCHandle leak
  • Fixed HlslTernaryFunctionEffect when using 3 value parameters
  • Added IDxgiAdapterService2 for plugin use
  • Updated the bundled AvifFileType plugin to v3.13.1 (thanks @null54!)
  • Updated the bundled JPEG XL FileType plugin to v1.2.0, which improves support for HBD/HDR image loading
    (thanks @null54!)
  • Updated the bundled WebP FileType plugin to v1.6.0 (thanks @null54!)

  •  
  • ↗️

Paint.NET 5.1.9 is now available

βœ‡Paint.net
Door: Rick Brewster
31 Juli 2025 om 19:12

This is a maintenance release that adds a Bulgarian translation and fixes some important bugs.

Get the Update

There are two releases of Paint.NET:

  • Microsoft Store release (recommended)
    • You can purchase it here. This helps fund development and is an alternative or supplement to sending in a donation. In addition, updates happen automatically in the background when you’re not using the app.
    • If you already have it installed, the update should happen automatically once Microsoft certifies the update, usually within the next day or so. To get the update immediately (once it’s certified), you can follow the instructions listed here.
  • Classic Desktop release
    • Download the installer from the website. This is the recommended download if you don’t have Paint.NET installed. It can also be used to update the app.
    • If you already have it installed, you should be offered the update automatically within the next few days, but you can also get it immediately by going to βš™ Settings -> Updates -> Check Now.
    • Offline Installers and Portable ZIPs are available over on GitHub.

Change Log

Changes since 5.1.8:

  • New: Added Bulgarian (bg) translation
  • Fixed: The Levels and Auto-Level adjustments were crashing with panoramic images due to a bug in Direct2D that caused it to attempt allocating a texture that was too large
  • Fixed: Using a non-solid fill pattern with a non-opaque color was resulting in the wrong colors being drawn to the layer due to a mixup between straight and premultiplied alpha
  • Fixed: Non-CMYK images with an embedded CMYK color profile were being rendered with completely wrong colors
  • Fixed a few small memory leaks

  •  
  • ↗️
❌