Disclosed Chromium Security Bugs

Security: Android address bar URL spoof if page is scrolling and tab is switched

#343938078Reporter: al...@alesandroortiz.com
$6,000
9/13/2024

DCHECK failure in !v8_flags.minor_ms || Heap::IsLargeObject(heap_object) implies Heap::InFromPage(

#345308889Reporter: 24...@project.gserviceaccount.com
$0
9/13/2024

V8 sandbox violation in v8::internal::maglev::MaglevGraphBuilder::GetValueNodeFromCapturedValue

#344943044Reporter: 24...@project.gserviceaccount.com
$0
9/13/2024

CHECK failure: PropertyConstness::kConst == owner->instance_descriptors(isolate) ->GetDetails(d

#345052532Reporter: 24...@project.gserviceaccount.com
$0
9/13/2024

Use-of-uninitialized-value in v8::internal::Simulator::DoRuntimeCall

#343794760Reporter: 24...@project.gserviceaccount.com
$0
9/13/2024

Intersection Observer v2 API fails to reliably determine target's visibility, which enables clickjacking against Google One Tap

#333708039Reporter: ja...@rub.de
$5,000
9/11/2024

LUCI Auth service "auth-trusted-services" group bypass

#344081614Reporter: nd...@protonmail.com
$1,000
9/11/2024

V8 Sandbox Bypass: Incomplete hardening of the experimental regex engine

#343801366Reporter: as...@gmail.com
$3,000
9/11/2024

TEST [please ignore] -- this is only a test (ITW, not embargoed)

#340291334Reporter: ph...@chromium.org
$0
9/11/2024

v8_wasm_compile_fuzzer: DCHECK failure in address % access_size == 0 in simulator-arm64.cc

#339683463Reporter: 24...@project.gserviceaccount.com
$0
9/11/2024
Showing 3031-3040 of 10559 bugs
1...303304305...1056