Disclosed Chromium Security Bugs

File Download Origin Spoof Using Long Subdomain

#41487774Reporter: lu...@gmail.com
$3,000
5/4/2024

Security: UAF IN BaseRenderingContext2D::ResetInternal

#41493290Reporter: m....@gmail.com
$4,000
5/4/2024

Security: Debug check failed: start_instr <= end_instr . in v8

#41493674Reporter: ki...@gmail.com
$8,000
5/4/2024

Security: Inconsistent slack tracking state in Map::GetDerivedMap

#41494754Reporter: ol...@chromium.org
$0
5/4/2024

edk2:TestUdf: Heap-buffer-overflow in GetAedAdsOffset

#42535157Reporter: mo...@clusterfuzz-external.iam.gserviceaccount.com
$0
5/4/2024

sqlite3:ossfuzz: Use-of-uninitialized-value in sqlite3BtreeTransferRow

#42535150Reporter: mo...@clusterfuzz-external.iam.gserviceaccount.com
$0
5/4/2024

matio:matio_fuzzer: Heap-buffer-overflow in H5T__bit_find

#42535111Reporter: mo...@clusterfuzz-external.iam.gserviceaccount.com
$0
5/3/2024

Security: Debug check failed: displacement == 0 in V8.

#41493286Reporter: je...@gmail.com
$8,000
5/3/2024

Security: use-after-poison in blink::MLGraphXnnpack::ComputeAsyncImpl

#41489926Reporter: zh...@gmail.com
$11,000
5/3/2024

DCHECK failure in node->options() == std::tuple{std::forward(args)...} in maglev-graph-build

#41494738Reporter: cl...@chromium.org
$0
5/3/2024
Showing 3441-3450 of 10574 bugs
1...344345346...1058