Disclosed Chromium Security Bugs

create_trials_from_seed_fuzzer: Crash in base::ParseVersionNumbers

#347779305Reporter: 24...@project.gserviceaccount.com
$0
9/27/2024

net_dns_host_resolver_cache_fuzzer: Container-overflow in dyld

#347899134Reporter: 24...@project.gserviceaccount.com
$0
9/27/2024

create_trial_from_study_fuzzer: Container-overflow in variations::SHA1EntropyProvider& std::__Cr::optional

#347867184Reporter: 24...@project.gserviceaccount.com
$0
9/27/2024

pcapplusplus:FuzzTarget: Use-of-uninitialized-value in pcpp::IPv6Address::toString

#42536479Reporter: mo...@clusterfuzz-external.iam.gserviceaccount.com
$0
9/26/2024

libyaml:libyaml_dumper_fuzzer: Use-of-uninitialized-value in yaml_document_delete

#42488030Reporter: mo...@clusterfuzz-external.iam.gserviceaccount.com
$0
9/26/2024

AddressSanitizer: heap-use-after-free on ScreenCaptureKitDeviceMac::ResetStreamTo

#346898524Reporter: li...@gmail.com
$6,000
9/26/2024

CHECK failure: (location_) != nullptr in maybe-handles.h

#347804248Reporter: 24...@project.gserviceaccount.com
$0
9/26/2024

Segfault in v8 in Builtins_JSConstructStubGeneric

#347724915Reporter: s0...@gmail.com
$7,000
9/26/2024

tint_wgsl_fuzzer: Incorrect-function-pointer-type in tint::hlsl::validate::ValidateUsingDXC

#348087176Reporter: 24...@project.gserviceaccount.com
$0
9/26/2024

v8::Value string with unmatched UTF8 surrogate pair causes crash when converted to base::Value

#339141099Reporter: go...@gmail.com
$3,000
9/25/2024
Showing 2981-2990 of 10559 bugs
1...298299300...1056