Disclosed Chromium Security Bugs
←Back to DashboardFatal error in Type cast failed in Parameter 0 at ../../src/builtins/builtins-handler-gen.cc:29
$0
8/20/2024
V8 sandbox violation in v8::internal::maglev::CapturedObject::set
$0
8/20/2024
neteq_rtp_fuzzer: Use-of-uninitialized-value in webrtc::test::NetEqTest::RunToNextGetAudio
$0
8/20/2024
CHECK failure: !v8::internal::v8_flags.enable_slow_asserts.value() || (IsJSObject_NonInline(*th
$0
8/20/2024
Type Confusion between WasmObject and JSObject in Array Concat
$10,000
8/17/2024
CHECK failure: (location_) != nullptr in maybe-handles.h
$0
8/17/2024
Use After Free in BackForwardCacheDisablingFeatureTracker::ReportFeaturesToDelegate()
$11,000
8/17/2024
Security: UAF in CSSSelectorParser::ParsePseudoElement
$0
8/16/2024
open_type_math_support_fuzzer: Crash in tt_face_get_colr_glyph_paint
$0
8/16/2024
dawn_wire_server_and_vulkan_backend_fuzzer: Use-of-uninitialized-value in dawn_wire_server_and_vulkan_backend_fuzzer
$0
8/16/2024