Disclosed Chromium Security Bugs

arrow:arrow-csv-fuzz: Heap-buffer-overflow in arrow_vendored::fast_float::from_chars_result arrow_vendored::fast_float::detail

#452080278Reporter: 87...@developer.gserviceaccount.com
$0
10/24/2025

assimp:assimp_fuzzer: Heap-buffer-overflow in Assimp::COBImporter::BuildNodes

#434376054Reporter: 87...@developer.gserviceaccount.com
$0
10/24/2025

shaderc:shaderc_fdp_fuzzer: Container-overflow in glslang::TParseContext::layoutObjectCheck

#434312125Reporter: 87...@developer.gserviceaccount.com
$0
10/24/2025

UaF in views::DialogDelegate::RunCloseCallback from ~CredentialLeakDialogControllerImpl

#431668129Reporter: ts...@chromium.org
$0
10/24/2025

UAF in in extensions::ExtensionURLLoaderThrottle::WillProcessResponse

#414760982Reporter: 0x...@gmail.com
$2,000
10/24/2025

DCHECK failure in pc_offset() < unresolved_branches_first_limit() in assembler-arm64.cc

#431828026Reporter: sa...@google.com
$0
10/24/2025

JIT type confusion via corrupted inlining metadata

#430572435Reporter: fa...@gmail.com
$7,000
10/24/2025

UAF in content::protocol::InputHandler::InputInjector::InjectMouseEvent through DevTools

#430635213Reporter: xu...@gmail.com
$1,000
10/24/2025

Use-after-poison in content::RenderFrameImpl::BeginNavigation

#432058938Reporter: 24...@project.gserviceaccount.com
$0
10/24/2025

Range::extractContents() causes use-after-tree with list-item

#40091415Reporter: cl...@chromium.org
$0
10/24/2025
Showing 1221-1230 of 10175 bugs
1...122123124...1018