Chromium Security Bugs

heap-use-after-free in content::RenderFrameHostImpl::ProcessBeforeUnloadCompleted in browser process

#391666328Reporter: 0x...@gmail.com
$5,000
5/15/2025

Stack-buffer-overflow in blink::CssValueKeywordID

#394371771Reporter: 24...@project.gserviceaccount.com
$0
5/15/2025

V8 Sandbox Bypass: OOB write in AstValueFactory::GetOneByteStringInternal

#392938085Reporter: v8...@gmail.com
$0
5/15/2025

CHECK failure: MachineRepresentation::kTagged == type.representation() || MachineRepresentation

#394120836Reporter: 24...@project.gserviceaccount.com
$0
5/15/2025

V8 sandbox violation in v8::internal::wasm::StructTypeBase::field

#394120667Reporter: 24...@project.gserviceaccount.com
$0
5/15/2025

base_persistent_histogram_allocator_fuzzer: Heap-buffer-overflow in base::PersistentHistogramAllocator::GetHistogram

#393742189Reporter: 24...@project.gserviceaccount.com
$0
5/14/2025

DCHECK failure in kCanBeWeak || (!IsSmi() == HAS_STRONG_HEAP_OBJECT_TAG(ptr_)) in tagged-impl.h

#393612656Reporter: 24...@project.gserviceaccount.com
$0
5/14/2025

heap-use-after-free in PrintDialogGtk::~PrintDialogGtk()

#390459306Reporter: 0x...@gmail.com
$1,000
5/14/2025

Crash in Builtins_WasmToJsWrapperCSA

#393414231Reporter: 24...@project.gserviceaccount.com
$0
5/14/2025

Segv on unknown address in v8::internal::GlobalizeTracedReference

#393408782Reporter: 24...@project.gserviceaccount.com
$0
5/14/2025
Showing 171-180 of 8156 bugs
1...171819...816