Disclosed Chromium Security Bugs

gpsd:FuzzDrivers: Use-of-uninitialized-value in aivdm_analyze

#479564939Reporter: 87...@developer.gserviceaccount.com
$0
1/31/2026

libraw:libraw_fuzzer: Index-out-of-bounds in LibRaw::ahd_interpolate_r_and_b_in_rgb_and_convert_to_cielab

#476973671Reporter: 87...@developer.gserviceaccount.com
$0
1/31/2026

cmake:cmELFFuzzer: Container-overflow in cmELFInternalImpl::GetNumberOfSections

#479251884Reporter: 87...@developer.gserviceaccount.com
$0
1/31/2026

Incorrect Optimization of ArrayConstructor by Maglev Leads to Creation of Malformed JSArray Objects

#454485895Reporter: hu...@gmail.com
$50,000
1/31/2026

V8 Sandbox Bypass: Wasm streaming compilation cache confusion via "double streaming"

#452605804Reporter: se...@gmail.com
$20,000
1/31/2026

DCHECK failure in !value->properties().is_conversion() in maglev-interpreter-frame-state.h

#454364323Reporter: 24...@project.gserviceaccount.com
$0
1/31/2026

DCHECK failure in TCPReadableStreamWrapper::Pull()

#453147449Reporter: i....@gmail.com
$4,000
1/31/2026

graphicsmagick:coder_MVG_fuzzer: Use-of-uninitialized-value in jxl::LowMemoryRenderPipeline::RenderRect

#457009809Reporter: 87...@developer.gserviceaccount.com
$0
1/30/2026

imagemagick:encoder_heic_fuzzer: Use-of-uninitialized-value in put_weighted_bipred_8_fallback

#472435699Reporter: 87...@developer.gserviceaccount.com
$0
1/30/2026

imagemagick:encoder_jxl_fuzzer: Use-of-uninitialized-value in jxl::LowMemoryRenderPipeline::RenderRect

#456872231Reporter: 87...@developer.gserviceaccount.com
$0
1/30/2026
Showing 1161-1170 of 10808 bugs
1...116117118...1081