Disclosed Chromium Security Bugs

media_metadata_parser_fuzzer: Heap-buffer-overflow in mov_read_header

#392690734Reporter: 24...@project.gserviceaccount.com
$0
5/8/2025

media_metadata_parser_fuzzer: Heap-buffer-overflow in media::FFmpegGlue::OpenContext

#392643252Reporter: 24...@project.gserviceaccount.com
$0
5/8/2025

Incorrect WriteBarrier Optimization in ObjectAssign FastPath Leads to Exploitable UAF Vulnerability

#392521083Reporter: hu...@gmail.com
$50,000
5/8/2025

Bad-cast to icu_74::MeasureUnit from invalid vptr in v8::internal::CreateUnitMap

#392948865Reporter: 24...@project.gserviceaccount.com
$0
5/8/2025

CHECK failure: argument_count_with_receiver <= kMaxUInt16 in js-inlining.cc

#388905056Reporter: 24...@project.gserviceaccount.com
$0
5/8/2025

V8 sandbox violation in v8::bigint::CopyAndZeroExtend

#392180065Reporter: 24...@project.gserviceaccount.com
$0
5/8/2025

Trap in Builtins_TestTurbofanType

#390465670Reporter: 24...@project.gserviceaccount.com
$0
5/7/2025

Extension popup can appear over WebUSB permission prompt

#382540635Reporter: ch...@gmail.com
$1,000
5/7/2025

heap-use-after-free in ui::AcceleratorManager::AcceleratorTargetInfo::TryProcess

#389750874Reporter: fa...@gmail.com
$0
5/7/2025

V8 Sandbox Bypass: Control flow hijack via Torque function type corruption

#390639820Reporter: se...@gmail.com
$20,000
5/7/2025
Showing 361-370 of 8283 bugs
1...363738...829