Disclosed Chromium Security Bugs

Missing range validation on slice_qp_delta

#484665123Reporter: lu...@icloud.com
$1,000
5/28/2026

Integer Overflow in H265 Slice Header Parsing

#485212874Reporter: am...@gmail.com
$1,000
5/28/2026

webnn_graph_mojolpm_fuzzer: Segv on unknown address in ruy::MulFrontEndFromTrMulParams

#482875307Reporter: 24...@project.gserviceaccount.com
$0
5/28/2026

Chrome iOS Address Bar Spoof Using 2 RTL (Arabic Characters) Subdomains

#374285495Reporter: re...@gmail.com
$0
5/28/2026

[BIGSLEEP-474545096] V8 Sandbox Bypass: Use-after-Free in JSSegments::Containing

#474402856Reporter: bi...@google.com
$0
5/28/2026

V8 Wasm interpreter (DrumBrake) missing write barriers for shared struct/array creation

#482742896Reporter: pe...@gmail.com
$0
5/28/2026

V8 Sandbox Bypass: UAF via Intl.v8BreakIterator

#484054137Reporter: 0x...@gmail.com
$0
5/28/2026

V8 Sandbox Bypass: Memory corruption during BigInt division

#478814654Reporter: sa...@google.com
$0
5/28/2026

imagemagick:encoder_mvg_fuzzer: Use-of-uninitialized-value in RenderMVGContent

#516022769Reporter: 87...@developer.gserviceaccount.com
$0
5/27/2026

wolftpm:fuzz_asn_cert: Null-dereference READ in ubsan_GetStackTrace

#513891493Reporter: 87...@developer.gserviceaccount.com
$0
5/27/2026
Showing 31-40 of 10546 bugs
1...345...1055