Disclosed Chromium Security Bugs

checkstyle:CheckstyleFuzzer: Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr

#461314338Reporter: 87...@developer.gserviceaccount.com
$0
11/29/2025

V8 sandbox violation in float v8::base::ReadUnalignedValue

#436140742Reporter: 24...@project.gserviceaccount.com
$0
11/29/2025

rtp_packetizer_h265_fuzzer: Heap-buffer-overflow in webrtc::RtpPacketizerH265::NextAggregatePacket

#439878383Reporter: 24...@project.gserviceaccount.com
$0
11/29/2025

rtp_packetizer_h265_fuzzer: Heap-buffer-overflow in webrtc::RtpPacketizerH265::PacketizeAp

#439869936Reporter: 24...@project.gserviceaccount.com
$0
11/29/2025

heap-buffer-overflow in ANGLE for Chromium on MacOS

#435683799Reporter: ul...@gmail.com
$10,000
11/29/2025

DCHECK failure in !isolate->has_exception() in runtime-wasm.cc

#440370987Reporter: 24...@project.gserviceaccount.com
$0
11/29/2025

checkstyle:CheckstyleFuzzer: Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.statement

#463709024Reporter: 87...@developer.gserviceaccount.com
$0
11/28/2025

V8: off-by-one error in RegExp matching leads to OOB read

#439758498Reporter: bi...@google.com
$0
11/28/2025

V8 Sandbox Bypass: In-sandbox corruption allows execution of DebugBreakTrampoline, leading to invalid tail call

#435630467Reporter: se...@gmail.com
$20,000
11/28/2025

DCHECK failure in (builder_->current_block()) == nullptr in maglev-graph-builder.cc

#440145531Reporter: 24...@project.gserviceaccount.com
$0
11/28/2025
Showing 331-340 of 9388 bugs
1...333435...939