Disclosed Chromium Security Bugs

clickjacking (enterjacking) download notification when a pip window closes

#392375329Reporter: sa...@gmail.com
$1,000
2/5/2026

gpsd:FuzzClient: Use-of-uninitialized-value in ntrip_parse_url

#479908873Reporter: 87...@developer.gserviceaccount.com
$0
2/4/2026

gpac:fuzz_probe_analyze: Heap-buffer-overflow in avi_parse_input_file

#480506470Reporter: 87...@developer.gserviceaccount.com
$0
2/4/2026

grok:grk_decompress_fuzzer: Heap-buffer-overflow in grk::t1::BlockCoder::dec_clnpass

#480063230Reporter: 87...@developer.gserviceaccount.com
$0
2/3/2026

gpsd:FuzzClient: Use-of-uninitialized-value in json_internal_read_object

#479922669Reporter: 87...@developer.gserviceaccount.com
$0
2/3/2026

gpsd:FuzzDriversStructured: Global-buffer-overflow in gpsd_poll

#480975802Reporter: 87...@developer.gserviceaccount.com
$0
2/3/2026

skia:skottie_json: Use-of-uninitialized-value in SkMatrix::Poly4Proc

#458702178Reporter: 87...@developer.gserviceaccount.com
$0
2/3/2026

Use-After-Free in WebMediaPlayerMS::OnFirstFrameReceived

#448046109Reporter: ss...@gmail.com
$3,000
2/3/2026

Chrome on Android: spoofing issue caused by bottom address bar

#454354281Reporter: ch...@gmail.com
$3,000
2/3/2026

DCHECK failure in res.IsDoneWithPayload() in maglev-graph-builder.cc

#454945068Reporter: 24...@project.gserviceaccount.com
$0
2/3/2026
Showing 181-190 of 9745 bugs
1...181920...975