Disclosed Chromium Security Bugs

DCHECK failure in stub_call_tag < static_cast(Builtin::kFirstBytecodeHandler) in wasm-co

#428057569Reporter: 24...@project.gserviceaccount.com
$0
10/7/2025

V8 Sandbox Bypass: Heap Use-After-Free in v8::internal::HeapLayout::CheckYoungGenerationConsistency

#427662337Reporter: da...@hirsch.cx
$1,000
10/7/2025

binutils:fuzz_readelf: Crash in byte_put_little_endian

#449374659Reporter: 87...@developer.gserviceaccount.com
$0
10/6/2025

mruby:mruby_fuzzer: Segv on unknown address in mod_compare_hierarchy

#429780986Reporter: 87...@developer.gserviceaccount.com
$0
10/6/2025

Intercepting console errors might lead to XSSI

#420885124Reporter: te...@google.com
$0
10/6/2025

php:php-fuzz-execute: Use-of-uninitialized-value in find_implicit_binds_recursively

#449549322Reporter: 87...@developer.gserviceaccount.com
$0
10/6/2025

Permission element inner div with style text-decoration-line: line-through; and text-decoration-thickness can be abused if no element in the parent chain has any text-decoration-line: line-through; and text-decoration-thickness are set.

#423670839Reporter: sa...@gmail.com
$500
10/5/2025

DCHECK failure in !IsEmptyNodeType(GetType(other)) in maglev-graph-builder.cc

#427531174Reporter: 24...@project.gserviceaccount.com
$0
10/5/2025

php:php-fuzz-parser: Heap-use-after-free in zend_compile_call_common

#449406464Reporter: 87...@developer.gserviceaccount.com
$0
10/5/2025

php:php-fuzz-execute: Use-of-uninitialized-value in find_implicit_binds_recursively

#449413955Reporter: 87...@developer.gserviceaccount.com
$0
10/5/2025
Showing 191-200 of 8822 bugs
1...192021...883