Disclosed Chromium Security Bugs

MaglevCompilationUnit sandbox check racy

#349526064Reporter: sr...@google.com
$0
10/4/2024

v8_inspector_fuzzer: DCHECK failure in 0 == location.GetLineNumber() in debug-interface.cc

#349248170Reporter: 24...@project.gserviceaccount.com
$0
10/3/2024

Wasm FeedbackMaker OOB accesses

#349517592Reporter: sr...@google.com
$0
10/3/2024

OutsideSandboxOrInReadonlySpace checks in-sandbox data

#348324480Reporter: sr...@google.com
$0
10/2/2024

storage_key_proto_fuzzer: Crash in storage_key_proto_fuzzer

#347779314Reporter: 24...@project.gserviceaccount.com
$0
10/2/2024

Abrt in v8::internal::__RT_impl_Runtime_Abort

#348567825Reporter: 24...@project.gserviceaccount.com
$0
10/2/2024

gl_lpm_fuzzer: Container-overflow in gl_lpm_fuzzer

#347066146Reporter: 24...@project.gserviceaccount.com
$0
10/2/2024

CHECK failure: func_info->parameter_count() == StateValuesAccess(state.parameters()).size() in

#344664770Reporter: 24...@project.gserviceaccount.com
$0
10/2/2024

heap-use-after-free in MediaStreamManager::GetRawDeviceIdsOpenedForFrame

#347373236Reporter: ha...@gmail.com
$5,000
10/1/2024

DCHECK failure in object->map()->is_extensible() || name->IsPrivate() in js-objects.cc

#348473836Reporter: 24...@project.gserviceaccount.com
$0
10/1/2024
Showing 2921-2930 of 10546 bugs
1...292293294...1055