Disclosed Chromium Security Bugs

Use-after-poison in blink::HTMLPlugInElement::DetachLayoutTree

#40075532Reporter: cl...@chromium.org
$0
2/1/2024

Security: OOB access in

#40071834Reporter: yq...@gmail.com
$0
1/31/2024

heap-buffer-overflow in ~SingleShotFrameHandler(imagecapture/image_capture_frame_grabber.cc)

#40075363Reporter: em...@gmail.com
$8,000
1/31/2024

lightweight-heap-use-after-free : web_app::WebAppCommandManager::StartCommand

#40075479Reporter: cr...@system.gserviceaccount.com
$0
1/31/2024

Security: UAF in gpu::ClientSharedImageInterface::DestroySharedImage(browser process)

#40065570Reporter: 0x...@gmail.com
$2,000
1/30/2024

Security: Heap buffer overflow write due to bound check missing

#40070115Reporter: bu...@gmail.com
$0
1/30/2024

Security: Out-of-Bound Write due to bound check missing

#40070117Reporter: bu...@gmail.com
$5,000
1/30/2024

Security: Integer-Overflow in ChapsAdaptor::GenerateRandom

#40070701Reporter: pw...@gmail.com
$0
1/30/2024

Heap-buffer-overflow in v8::internal::Simulator::WriteW

#40073825Reporter: cl...@chromium.org
$0
1/30/2024

Security: readanything render frame UAF fix of crbug.com/1488268 is not robust.

#40936128Reporter: zh...@gmail.com
$2,000
1/30/2024
Showing 3821-3830 of 10706 bugs
1...382383384...1071