Disclosed Chromium Security Bugs

Security: Check failed: !v8::internal::v8_flags.enable_slow_asserts.value() || (IsSharedFunctionInfo_NonInline(*this)).

#40075744Reporter: ki...@gmail.com
$8,000
2/14/2024

Chrome_ChromeOS: Crash Report - ash::ime::ImeService::SimpleDownloadFinishedV2

#41481312Reporter: cr...@system.gserviceaccount.com
$0
2/13/2024

CHECK failure: !block_assessments->IsStaleReferenceStackSlot(op) in register-allocator-verifier

#40075638Reporter: cl...@chromium.org
$0
2/13/2024

Security: Chrome OS: Qcom camx driver OOB write in function __cam_req_mgr_setup_link_info can cause sandbox escape to kernel

#40069116Reporter: pi...@gmail.com
$0
2/13/2024

rdkit:smiles_string_to_mol_fuzzer: Heap-use-after-free in RDKit::Canon::initCanonAtoms

#42532934Reporter: mo...@clusterfuzz-external.iam.gserviceaccount.com
$0
2/12/2024

mime_util_xdg_fuzzer: Crash in cache_glob_node_lookup_suffix

#40075921Reporter: cl...@chromium.org
$0
2/11/2024

WebRTC: libevent contains 4 CVEs that include integer overflow + heap overflow and OOB reads

#40075984Reporter: da...@chromium.org
$0
2/10/2024

v8_wasm_code_fuzzer: DCHECK failure in effect_edges > 0 in verifier.cc

#40076096Reporter: cl...@chromium.org
$0
2/10/2024

Trap in Builtins_CheckTurboshaftFloat64Type

#40071918Reporter: cl...@chromium.org
$0
2/10/2024

Security: chrome.pageCapture.saveAsMHTML() extension API can be used on blocked origins due to racy access check

#40075347Reporter: ja...@google.com
$0
2/9/2024
Showing 3791-3800 of 10706 bugs
1...379380381...1071