Disclosed Chromium Security Bugs

UaF in views::DialogDelegate::RunCloseCallback from ~CredentialLeakDialogControllerImpl

#431668129Reporter: ts...@chromium.org
$0
10/24/2025

UAF in in extensions::ExtensionURLLoaderThrottle::WillProcessResponse

#414760982Reporter: 0x...@gmail.com
$2,000
10/24/2025

DCHECK failure in pc_offset() < unresolved_branches_first_limit() in assembler-arm64.cc

#431828026Reporter: sa...@google.com
$0
10/24/2025

JIT type confusion via corrupted inlining metadata

#430572435Reporter: fa...@gmail.com
$7,000
10/24/2025

UAF in content::protocol::InputHandler::InputInjector::InjectMouseEvent through DevTools

#430635213Reporter: xu...@gmail.com
$1,000
10/24/2025

Use-after-poison in content::RenderFrameImpl::BeginNavigation

#432058938Reporter: 24...@project.gserviceaccount.com
$0
10/24/2025

Range::extractContents() causes use-after-tree with list-item

#40091415Reporter: cl...@chromium.org
$0
10/24/2025

Security: Debug check failed: (value) != nullptr

#40062905Reporter: wh...@gmail.com
$0
10/24/2025

libjxl:djxl_fuzzer: Global-buffer-overflow in void jxl::N_SSE4::WriteToOutputStage::StoreUnsignedRow

#450328034Reporter: 87...@developer.gserviceaccount.com
$0
10/23/2025

php:php-fuzz-parser: Heap-use-after-free in destroy_op_array

#454273637Reporter: 87...@developer.gserviceaccount.com
$0
10/22/2025
Showing 111-120 of 8802 bugs
1...111213...881