Disclosed Chromium Security Bugs

dawn_wire_server_and_vulkan_backend_fuzzer: Heap-use-after-free in dawn::native::Adapter::~Adapter

#382147425Reporter: 24...@project.gserviceaccount.com
$0
3/13/2025

Crash in unsigned int v8::base::AsAtomicImpl::Relaxed_Load

#381332096Reporter: 24...@project.gserviceaccount.com
$0
3/13/2025

V8 sandbox violation in v8::internal::MutablePageMetadata::SweepingDone

#382147423Reporter: sa...@google.com
$0
3/13/2025

DCHECK failure in !chunk->InWritableSharedSpace() in isolate-utils-inl.h

#381129881Reporter: 24...@project.gserviceaccount.com
$0
3/13/2025

jackson-dataformat-xml:XmlFuzzer: Security exception in com.sun.xml.stream.XMLDocumentFragmentScannerImpl$FragmentContentDriver.next

#383588432Reporter: 87...@developer.gserviceaccount.com
$0
3/12/2025

wasm3:fuzzer: Heap-buffer-overflow in PreserveRegisterIfOccupied

#383379140Reporter: 87...@developer.gserviceaccount.com
$0
3/11/2025

Security DCHECK failure: dom_start_ <= dom_end_. 3 vs in offset_mapping.cc

#379254069Reporter: 24...@project.gserviceaccount.com
$0
3/11/2025

V8 Sandbox Bypass: AAR/W via WASM dispatch table index OOB from `WasmTableObject.uses`

#350628675Reporter: se...@gmail.com
$20,000
3/11/2025

Arbitrary Wasm type confusion due to improper fix of b/380397544

#381696874Reporter: se...@gmail.com
$55,000
3/11/2025

Arbitrary WASM type confusion due to improper fix of b/379009132

#380397544Reporter: se...@gmail.com
$55,000
3/11/2025
Showing 2451-2460 of 10541 bugs
1...245246247...1055