Disclosed Chromium Security Bugs

dcsctp_socket_fuzzer: Heap-use-after-free in dcsctp::OutstandingData::NackAll

#41482961Reporter: cl...@chromium.org
$0
3/22/2024

gpu_raster_swangle_passthrough_fuzzer: Incorrect-function-pointer-type in rx::vk::priv::SecondaryCommandBuffer::executeCommands

#40946012Reporter: cl...@chromium.org
$0
3/21/2024

Security: Heap-use-after-free WRITE 16 · cppgc::internal::PersistentRegionBase::ClearAllUsedNodes

#40947602Reporter: m....@gmail.com
$11,000
3/21/2024

Security: Possible to open new tab page, view-source: pages and chrome-native:// pages by redirecting a same-origin download

#40095183Reporter: de...@gmail.com
$1,000
3/21/2024

Security: Type confusion in Harmony Set methods (Leads to RCE)

#41483297Reporter: h0...@gmail.com
$7,000
3/21/2024

third_party/icu has known bugs

#40052843Reporter: oc...@google.com
$0
3/21/2024

Cherry-pick VP9 encoder bug fixes to the Chrome M121 branch

#41483159Reporter: wt...@google.com
$0
3/20/2024

heap-use-after-free in ReadAnythingAppController::OnActiveAXTreeIDChanged(ui::AXTreeID const&, long long, GURL const&)

#40070902Reporter: zy...@gmail.com
$1,000
3/19/2024

Security: map::erase using map::end() in video capture service

#41482168Reporter: hy...@gmail.com
$0
3/19/2024

sql_recovery_fuzzer: Crash in sql::recover::VirtualCursor::AppendPageDecoder

#41481379Reporter: cl...@chromium.org
$0
3/18/2024
Showing 3561-3570 of 10591 bugs
1...356357358...1060