Disclosed Chromium Security Bugs

Vulnerability: Incomplete List of Disallowed Inputs affecting @babel/traverse affecting GitOnBorg::chromium::infra::infra

#350091888Reporter: vu...@google.com
$0
10/23/2024

V8 Sandbox Bypass: AAR/W via WASM function signature confusion in TurboFan call_ref

#352689356Reporter: se...@gmail.com
$0
10/23/2024

Security: Potential Use-After-Free in PasswordGenerationPopupControllerImpl::EditPasswordClicked

#349253666Reporter: kd...@gmail.com
$1,000
10/22/2024

Permission Element overlay and tapjacking

#347588491Reporter: st...@gmail.com
$3,000
10/22/2024

SameSite strict cookies bypass/cross-origin download via `e.dataTransfer.setData('DownloadURL', ...`

#40060358Reporter: nd...@protonmail.com
$1,000
10/22/2024

v8_fully_instrumented_fuzzer: DCHECK failure in is_one_byte_ == sizeof(Char) == 1 in literal-buffer.h

#351876778Reporter: 24...@project.gserviceaccount.com
$0
10/22/2024

v8_fully_instrumented_fuzzer: DCHECK failure in scope->UniqueIdInScript() > UniqueIdInScript() in scopes.cc

#352402518Reporter: 24...@project.gserviceaccount.com
$0
10/22/2024

GPU process crash via WebGPU shader - Stack use-after-return at HLMatrixLowerPass.cpp:63

#346618785Reporter: wg...@gmail.com
$10,000
10/22/2024

V8 Sandbox Bypass: AAR/W via function import signature check race

#349529650Reporter: se...@gmail.com
$5,000
10/22/2024

Security: heap-use-after-free in GetModalDialogBounds

#347664964Reporter: st...@gmail.com
$1,000
10/22/2024
Showing 2841-2850 of 10546 bugs
1...284285286...1055