On February 18, 2026, Google published a follow-up Stable Channel Update for Desktop, moving Chrome to 145.0.7632.109/110 (Windows/macOS) and 144.0.7559.109 (Linux), with a staged rollout described as occurring over “the coming days/weeks.”
Google’s Feb. 18 desktop release notes list three security fixes in that build, separate from CVE-2026-2441:
Google also updated the Extended Stable channel on February 18, 2026, bumping it to 144.0.7559.220 for Windows and Mac, again with a staged rollout over the coming days/weeks.
Alongside the desktop updates, Google posted stable updates for mobile:
Google’s Android note also reiterates that Android releases contain the same security fixes as the corresponding desktop releases unless stated otherwise.
CVE-2026-2441 is now listed in CISA’s Known Exploited Vulnerabilities (KEV) catalog, and the NVD page mirrors KEV metadata showing:
CISA also publicly announced adding CVE-2026-2441 to the catalog as part of a batch update. The NVD record was updated again, including a public PoC reference
The NVD entry’s change history shows additional updates after the initial disclosure, including a CISA-ADP modification on 02/20/2026 that added a reference to a publicly posted PoC link.
Google Stable Channel Update for Desktop
Google Dev Channel Update for ChromeOS / ChromeOS Flex
Cisa.gov
AI Search


