Disclosed Chromium Security Bugs

DedicatedOrSharedWorkerFetchContextImpl::accept_languages_watcher_ is a raw_ptr... to a GarbageCollected class

#379869752Reporter: cd...@chromium.org
$0
3/21/2025

DCHECK failure in mutable_heap_number->IsHeapNumber() in maglev-graph-builder.cc

#382547590Reporter: 24...@project.gserviceaccount.com
$0
3/21/2025

audio_decoder_fuzzer: Heap-buffer-overflow in mov_read_trun

#383454674Reporter: 24...@project.gserviceaccount.com
$0
3/21/2025

Security: Browser history sniffing

#40086812Reporter: ch...@gmail.com
$1,000
3/21/2025

Security: Private Network Access (PNA) Bypass Allows Access to localhost on macOS & Linux using 0.0.0.0

#40058874Reporter: sa...@gmail.com
$1,000
3/21/2025

heap-use-after-free cc\tiles\gpu_image_decode_cache.cc:2469 in cc::GpuImageDecodeCache::DecodeImageIfNecessary

#368222741Reporter: m....@gmail.com
$4,000
3/20/2025

DCHECK failure in IsTrustedObject(object) in heap-visitor-inl.h

#383187492Reporter: 24...@project.gserviceaccount.com
$0
3/20/2025

DCHECK failure in kSize == map->instance_size() in objects-body-descriptors.h

#383195003Reporter: 24...@project.gserviceaccount.com
$0
3/20/2025

v8_wasm_deopt_fuzzer: Heap-buffer-overflow in v8_wasm_deopt_fuzzer

#383154225Reporter: 24...@project.gserviceaccount.com
$0
3/20/2025

DCHECK failure in HeapLayout::IsSelfForwarded(dest) && !Heap::IsLargeObject(dest) implies MemoryCh

#382988747Reporter: 24...@project.gserviceaccount.com
$0
3/19/2025
Showing 2111-2120 of 10209 bugs
1...211212213...1021