Disclosed Chromium Security Bugs

libgd:tga_target: Stack-buffer-overflow in dynamicGetbuf

#516582689Reporter: 87...@developer.gserviceaccount.com
$0
7/7/2026

libxaac:xaac_enc_fuzzer: Heap-buffer-overflow in ixheaace_process

#523531852Reporter: 87...@developer.gserviceaccount.com
$0
7/7/2026

V8 Sandbox Bypass: BigInt CachedMod Native Heap OOB via Corrupted BigInt Length

#496618662Reporter: pi...@gmail.com
$5,000
7/7/2026

Heap UAF in HTTPS HTTP/2 proxy authentication flow

#493628982Reporter: sh...@gmail.com
$10,000
7/7/2026

V8 Sandbox Bypass: BigInt DivideSchoolbook Native Heap OOB Write via Signed Scratch-Length Overflow

#496807861Reporter: pi...@gmail.com
$5,000
7/7/2026

V8 Sandbox Bypass: BigInt DivideBarrett Double Fetch causing Native Heap oob read/write

#496629079Reporter: pi...@gmail.com
$5,000
7/7/2026

ANGLE Metal ProvokingVertexHelper uint32 Overflow causes GPU OOB Write

#484986863Reporter: ci...@gmail.com
$4,000
7/7/2026

Skia JPEG MPF integer overflow in SkJpegMultiPictureParameters::Make leading to OOB Read/Write

#488596746Reporter: sh...@gmail.com
$2,000
7/7/2026

Potential Heap OOB Write in Skia `trim` via Canvas `getImageData` Integer Overflow

#495534710Reporter: rj...@google.com
$0
7/7/2026

WebCodecs libaom, libvpx: OOB Read in AV1 and VP9 encoder when encoding I420 frames with mismatched U and V strides

#492213293Reporter: eu...@chromium.org
$0
7/7/2026
Showing 261-270 of 11332 bugs