Disclosed Chromium Security Bugs

Crash in v8::internal::Simulator::WriteW

#339513381Reporter: 24...@project.gserviceaccount.com
$0
9/7/2024

Security: heap-use-after-free in MacNotificationServiceUN::CloseNotificationsForProfile

#343302586Reporter: zh...@gmail.com
$4,000
9/7/2024

pdf_jpx_fuzzer: Heap-buffer-overflow in opj_bio_read

#342451731Reporter: 24...@project.gserviceaccount.com
$0
9/7/2024

V8 sandbox violation in Builtins_JSToJSWrapper

#338342091Reporter: sa...@google.com
$0
9/7/2024

[FedCM] Make sure that we fetch the picture URL for all accounts

#340895241Reporter: cb...@chromium.org
$0
9/6/2024

GPU process crash via WebGPU shader - UAF in ConstantFoldTerminator at Transforms\Utils\Local.cpp:93

#339171223Reporter: wg...@gmail.com
$10,000
9/6/2024

Security: Container-overflow in STGEverythingMenu::ExecuteCommand

#341991535Reporter: me...@gmail.com
$3,000
9/6/2024

Security: Internal Compiler Error(Duplicate non-aggregate type declarations are not allowed) in tint::spirv::writer::IRFuzzer

#342840932Reporter: de...@gmail.com
$5,000
9/6/2024

GPU process crash via WebGPU shader - UAF in GetIfCondition at BasicBlockUtils.cpp:810

#340196361Reporter: wg...@gmail.com
$10,000
9/6/2024

[Pwn2Own 2024] DOMArrayBuffer confused about ownership of backing buffer

#330759272Reporter: se...@gmail.com
$0
9/6/2024
Showing 3051-3060 of 10559 bugs
1...305306307...1056