Disclosed Chromium Security Bugs

UAF in vk::Format::getAspectFormat(unsigned int)

#40937251Reporter: em...@gmail.com
$10,000
2/8/2024

CHECK failure: IsHeapObject(code_object__value)

#40076015Reporter: cl...@chromium.org
$0
2/8/2024

Security: TFC 2023 UAF in WebAudio / Renderer RCE

#40075943Reporter: am...@chromium.org
$0
2/7/2024

heap-use-after-free : openscreen::cast::StatisticsAnalyzer::RecordFrameLatencies

#40074465Reporter: cr...@system.gserviceaccount.com
$0
2/7/2024

UAP in permissions::PermissionRequestQueue::Peek

#40075944Reporter: ha...@gmail.com
$41,000
2/7/2024

mediasource_MP2T_AACLC_pipeline_integration_fuzzer: Trap in std::__Cr::__libcpp_verbose_abort

#40073340Reporter: cl...@chromium.org
$0
2/6/2024

Security: Autofill Exploit Using Custom CSS Cursor

#40065872Reporter: fa...@gmail.com
$2,000
2/6/2024

Security: Heap-use-after-free in lens::OpenLensRegionSearchInstructions

#40075359Reporter: ch...@gmail.com
$1,000
2/6/2024

v8_wasm_fuzzer: DCHECK failure in 1 < group.types.size() in canonical-types.cc

#40075616Reporter: cl...@chromium.org
$0
2/6/2024

Security: arbitrary address access in vrend_renderer_blit_gl

#40072662Reporter: da...@gmail.com
$2,000
2/2/2024
Showing 3691-3700 of 10591 bugs
1...369370371...1060