Chromium Security Bugs

V8 Sandbox Bypass: OOB write in JsonParser::DecodeString (double fetch)

#396446145Reporter: v8...@gmail.com
$5,000
7/25/2025

Security: Omnibox Spoofing in MacOS

#41483793Reporter: fa...@gmail.com
$5,000
7/25/2025

Heap-use-after-free in utext_setNativeIndex_74

#410930625Reporter: 24...@project.gserviceaccount.com
$0
7/25/2025

CHECK failure: !v8::internal::v8_flags.enable_slow_asserts.value() || (String::DoesNotContainEs

#410925356Reporter: 24...@project.gserviceaccount.com
$0
7/25/2025

Vulnerability: Upgrade karma to 6.4.3 in GoB repo chromium/catapult

#406391575Reporter: au...@google.com
$0
7/25/2025

Update version of sqlite to 3.49.1

#410635480Reporter: am...@chromium.org
$0
7/24/2025

GPU process crash via WebGPU shader - heap-buffer-overflow in Mesa brw_fs_opt_register_coalesce

#384531062Reporter: a7...@gmail.com
$10,000
7/24/2025

Security: Popup window tab doesn't show the origin elided from the right

#40075024Reporter: ch...@gmail.com
$500
7/24/2025

DCHECK failure in 0 == node->op()->ControlOutputCount() in simplified-lowering.cc

#410811025Reporter: 24...@project.gserviceaccount.com
$0
7/24/2025

CHECK failure: index < node->op()->ControlInputCount()

#410809966Reporter: 24...@project.gserviceaccount.com
$0
7/24/2025
Showing 1-10 of 8145 bugs
1234...815