Disclosed Chromium Security Bugs

heap-buffer-overflow in ANGLE for Chromium on MacOS

#435683799Reporter: ul...@gmail.com
$10,000
11/29/2025

DCHECK failure in !isolate->has_exception() in runtime-wasm.cc

#440370987Reporter: 24...@project.gserviceaccount.com
$0
11/29/2025

checkstyle:CheckstyleFuzzer: Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.statement

#463709024Reporter: 87...@developer.gserviceaccount.com
$0
11/28/2025

V8: off-by-one error in RegExp matching leads to OOB read

#439758498Reporter: bi...@google.com
$0
11/28/2025

V8 Sandbox Bypass: In-sandbox corruption allows execution of DebugBreakTrampoline, leading to invalid tail call

#435630467Reporter: se...@gmail.com
$20,000
11/28/2025

DCHECK failure in (builder_->current_block()) == nullptr in maglev-graph-builder.cc

#440145531Reporter: 24...@project.gserviceaccount.com
$0
11/28/2025

tinyusb:cdc: Null-dereference READ in ubsan_GetStackTrace

#444622228Reporter: 87...@developer.gserviceaccount.com
$0
11/27/2025

tinyusb:msc: Crash in msc

#461325312Reporter: 87...@developer.gserviceaccount.com
$0
11/27/2025

V8: ArrayBuffer Use-after-Free in WebAssembly.Validate

#439772737Reporter: bi...@google.com
$0
11/27/2025

V8 Sandbox Bypass: In-sandbox corruption allows execution of arbitrary runtime functions / intrinsics

#439380004Reporter: se...@gmail.com
$20,000
11/27/2025
Showing 1651-1660 of 10831 bugs
1...165166167...1084