Disclosed Chromium Security Bugs

Use-after-poison in cppgc::internal::HeapVisitor::Traverse

#40075636Reporter: cl...@chromium.org
$0
2/2/2024

Use-after-poison in cppgc::internal::MarkingStateBase::MarkAndPush

#40075776Reporter: cl...@chromium.org
$0
2/2/2024

Security: Contextual search selection offsets should be sanitized

#40060256Reporter: jd...@google.com
$0
2/1/2024

chrome.inspectedWindow.eval execution on Web Store with trailing URL dot

#40069571Reporter: ma...@gmail.com
$5,000
2/1/2024

Security: Chrome OS: Multiple controllable OOB write bugs in Qcom camx drivers may cause sandbox escape to kernel

#40069585Reporter: pi...@gmail.com
$0
2/1/2024

Security: Race Condition UAF in virtio_transport_space_update

#40073262Reporter: da...@gmail.com
$2,000
2/1/2024

Use-after-poison in blink::HTMLPlugInElement::DetachLayoutTree

#40075532Reporter: cl...@chromium.org
$0
2/1/2024

Security: OOB access in

#40071834Reporter: yq...@gmail.com
$0
1/31/2024

heap-buffer-overflow in ~SingleShotFrameHandler(imagecapture/image_capture_frame_grabber.cc)

#40075363Reporter: em...@gmail.com
$8,000
1/31/2024

lightweight-heap-use-after-free : web_app::WebAppCommandManager::StartCommand

#40075479Reporter: cr...@system.gserviceaccount.com
$0
1/31/2024
Showing 3701-3710 of 10591 bugs
1...370371372...1060