Disclosed Chromium Security Bugs
←Back to DashboardV8 Sandbox Bypass: WasmCPT handle UAF by import dispatch table corruption (multiple variants of b/446113730)
$20,000
2/6/2026
webnn_graph_mojolpm_fuzzer: Negative-size-param in void tflite::reference_ops::BroadcastTo<8>
$0
2/6/2026
kimageformats:kimgio_jxr_fuzzer: Use-of-uninitialized-value in ReadContainer
$0
2/5/2026
libheif:file_fuzzer: Negative-size-param in HeifPixelImage::fill_RGB_16bit
$0
2/5/2026
kimageformats:kimgio_xcf_fuzzer: Use-of-uninitialized-value in comp_func_SourceOver_avx2
$0
2/5/2026
ffmpeg:ffmpeg_AV_CODEC_ID_QDM2_fuzzer: Heap-use-after-free in qdm2_get_vlc
$0
2/5/2026
libheif:file_fuzzer: Heap-buffer-overflow in Op_RGB_to_YCbCr::convert_colorspace
$0
2/5/2026
libssh2:ssh2_client_fuzzer: Heap-buffer-overflow in session_startup
$0
2/5/2026
libheif:file_fuzzer: Heap-buffer-overflow in HeifPixelImage::scale_nearest_neighbor
$0
2/5/2026
kimageformats:kimgio_heif_fuzzer: Use-of-uninitialized-value in put_weighted_pred_8_fallback
$0
2/5/2026