Disclosed Chromium Security Bugs

v8_wasm_compile_simd_fuzzer: Heap-use-after-free in v8::internal::FreePages

#332571370Reporter: cl...@chromium.org
$0
7/16/2024

DCHECK failure in (var) != nullptr in scopes.cc

#329693878Reporter: 24...@project.gserviceaccount.com
$0
7/13/2024

CHECK failure: !v8::internal::v8_flags.enable_slow_asserts.value() || (IsJSReceiver_NonInline(*

#330922408Reporter: 24...@project.gserviceaccount.com
$0
7/13/2024

Type confusion in v8 wasm

#332081797Reporter: je...@gmail.com
$11,500
7/13/2024

heap-use-after-free on ModelExecutionManager::ExecuteModel

#332592716Reporter: li...@gmail.com
$3,000
7/13/2024

Crash in v8::internal::Heap::InYoungGeneration

#331837300Reporter: de...@googlemail.com
$9,000
7/13/2024

JS object corruption in WasmJs::InstallTypeReflection

#331383939Reporter: m-...@github.com
$10,000
7/13/2024

Insufficient fix for CVE-2021-30561

#331358160Reporter: m-...@github.com
$20,000
7/13/2024

DCHECK failure in id_ != kInvalidNodeId in maglev-ir.h

#331836788Reporter: 24...@project.gserviceaccount.com
$0
7/13/2024

heap-use-after-free : extensions::SerialConnection::OnSendTimeout

#332573763Reporter: mp...@google.com
$0
7/13/2024
Showing 3221-3230 of 10559 bugs
1...322323324...1056