Disclosed Chromium Security Bugs

DCHECK failure in NodeTypeIs(GetType(string), NodeType::kString) in maglev-graph-builder.cc

#454270729Reporter: 24...@project.gserviceaccount.com
$0
1/30/2026

Security: Compromised renderer can control mouse after single tap (UXSS, sandbox escape, and more)

#447172715Reporter: al...@alesandroortiz.com
$30,000
1/30/2026

flyway:LocationFuzzer: Security exception in com.code_intelligence.jazzer.sanitizers.RegexInjection.hookInternal

#476233079Reporter: 87...@developer.gserviceaccount.com
$0
1/29/2026

gpac:fuzz_probe_analyze: Heap-buffer-overflow in avi_parse_input_file

#479313794Reporter: 87...@developer.gserviceaccount.com
$0
1/29/2026

libheif:file_fuzzer: Heap-buffer-overflow in HeifPixelImage::scale_nearest_neighbor

#478035121Reporter: 87...@developer.gserviceaccount.com
$0
1/29/2026

libheif:file_fuzzer: Heap-buffer-overflow in Op_RGB_to_YCbCr::convert_colorspace

#477289650Reporter: 87...@developer.gserviceaccount.com
$0
1/29/2026

openssl:pkcs12: Global-buffer-overflow in get_string_internal

#478301090Reporter: 87...@developer.gserviceaccount.com
$0
1/29/2026

openssl:pkcs12: Stack-buffer-overflow in kdf_pbkdf2_derive

#477312364Reporter: 87...@developer.gserviceaccount.com
$0
1/29/2026

selinux:checkpolicy-fuzzer: Heap-use-after-free in expand_role_attributes_in_attributes

#474561491Reporter: 87...@developer.gserviceaccount.com
$0
1/29/2026

DCHECK failure in left != right in macro-assembler-arm.cc

#454094408Reporter: 24...@project.gserviceaccount.com
$0
1/29/2026
Showing 1191-1200 of 10808 bugs
1...119120121...1081