Disclosed Chromium Security Bugs

h265_bitstream_parser_fuzzer: Use-of-uninitialized-value in webrtc::H265BitstreamParser::ParseNonParameterSetNalu

#40073288Reporter: cl...@chromium.org
$0
1/10/2024

Security: Debug check failed: output_instr_index_ == definition_block->last_instruction_index() in v8/src/compiler/backend/mid-tier-register-allocator.cc:583

#40073339Reporter: al...@goodmanemail.com
$7,000
1/10/2024

Chrome's Reading Mode UAF

#40073847Reporter: no...@ssd-disclosure.com
$2,000
1/10/2024

DCHECK failure in IsNumberDictionary(fixed_array, cage_base) in js-objects-inl.h

#40073877Reporter: cl...@chromium.org
$0
1/10/2024

Trap in Builtins_JSEntryTrampoline

#40073943Reporter: cl...@chromium.org
$0
1/10/2024

tint_wgsl_reader_spv_writer_fuzzer: Heap-use-after-free in tint::core::ir::transform::MultiplanarExternalTexture

#40073805Reporter: cl...@chromium.org
$0
1/9/2024

Security: Heap buffer overflow Write due to Integer Overflow

#40070491Reporter: bu...@gmail.com
$0
1/8/2024

Security: Heap-use-after-free in SidePanelCoordinator::Show

#40072973Reporter: ch...@gmail.com
$0
1/5/2024

DCHECK failure in Heap::InFromPage(object) in scavenger-inl.h

#40073561Reporter: cl...@chromium.org
$0
1/5/2024

CHECK failure: IsMap(heap_object->map(cage_base()))

#40073632Reporter: cl...@chromium.org
$0
1/5/2024
Showing 3921-3930 of 10721 bugs
1...392393394...1073