Disclosed Chromium Security Bugs

openexr:openexr_exrcheck_fuzzer: Heap-buffer-overflow in generic_unpack

#456158449Reporter: 87...@developer.gserviceaccount.com
$0
10/30/2025

tarantool:luaL_loadbuffer_fuzzer: Heap-buffer-overflow in mmcall

#435479026Reporter: 87...@developer.gserviceaccount.com
$0
10/30/2025

V8 Sandbox Bypass: InstantiateAsmJs builtin doesn't protect against mid-builtin dispatch handle swaps

#430960844Reporter: ma...@popax21.dev
$20,000
10/30/2025

v8_wasm_deopt_fuzzer: Crash in std::__Cr::pair v8::internal::MarkCompactCollector

#433469898Reporter: 24...@project.gserviceaccount.com
$0
10/30/2025

Security DCHECK failure: length <= impl.length() - offset in 378

#433647419Reporter: 24...@project.gserviceaccount.com
$0
10/30/2025

openexr:openexr_exrcorecheck_fuzzer: Heap-buffer-overflow in DwaCompressor_uncompress

#447429458Reporter: 87...@developer.gserviceaccount.com
$0
10/29/2025

openexr:openexr_exrcheck_fuzzer: Heap-buffer-overflow in generic_unpack

#436037111Reporter: 87...@developer.gserviceaccount.com
$0
10/29/2025

openexr:openexr_exrcheck_fuzzer: Heap-buffer-overflow in generic_unpack

#435779241Reporter: 87...@developer.gserviceaccount.com
$0
10/29/2025

checkstyle:CheckstyleFuzzer: Security exception in java.base/java.util.ArrayList.forEach

#454824443Reporter: 87...@developer.gserviceaccount.com
$0
10/29/2025

imagemagick:encoder_heic_fuzzer: Index-out-of-bounds in derive_collocated_motion_vectors

#435346238Reporter: 87...@developer.gserviceaccount.com
$0
10/29/2025
Showing 1821-1830 of 10856 bugs
1...182183184...1086