Disclosed Chromium Security Bugs

GPU failure in blink::AXObject::RepairMissingParent

#40072724Reporter: cl...@chromium.org
$9,000
2/24/2024

Security: heap-buffer-overflow in gfx::RenderText::TextIndexToDisplayIndex

#40940830Reporter: ki...@gmail.com
$1,000
2/24/2024

Security: heap-buffer-overflow in libavif when decode the crafted avif file

#40942077Reporter: me...@gmail.com
$7,000
2/23/2024

Security: heap-use-after-free in libavif when decode the crafted avif file.

#40942082Reporter: me...@gmail.com
$7,000
2/23/2024

Security: Attacker Can Execute Arbitrary JavaScript Code in the Highly Privileged "devtools://devtools" Origin

#40942152Reporter: ad...@gmail.com
$6,000
2/23/2024

Null-dereference READ in v8::internal::StringsStorage::GetCopy

#40942525Reporter: cl...@chromium.org
$0
2/22/2024

Security: read/write out of bounds with Resizable Array Buffer

#40067127Reporter: pe...@gmail.com
$0
2/22/2024

Security: V8 Debug check failed: LAST_TYPE >= value

#40941600Reporter: vu...@gmail.com
$16,000
2/22/2024

Security: Type assertion failed in turboshaft

#40076244Reporter: wh...@gmail.com
$0
2/22/2024

Unsafe use of createPackageContext leads to local arbitrary command execution in com.android.chrome

#40064568Reporter: wu...@gmail.com
$0
2/22/2024
Showing 3631-3640 of 10591 bugs
1...363364365...1060