Disclosed Chromium Security Bugs

Use-after-poison in mojo::SimpleWatcher::OnHandleReady

#40063970Reporter: cl...@chromium.org
$0
7/19/2023

Security: [0-day] JIT optimisation issue

#40063989Reporter: cl...@google.com
$0
7/19/2023

Security: Document PiP can spoof top-level page origin, show attacker content in PiP window, open PiP windows from iframes

#40063068Reporter: al...@alesandroortiz.com
$4,000
7/18/2023

Security: Race Condition UAF in evdi_painter_mode_changed_notify

#40063434Reporter: lm...@gmail.com
$6,000
7/18/2023

freetype_cff_ftengine_fuzzer: Heap-buffer-overflow in tt_size_reset_iterator

#40063842Reporter: cl...@chromium.org
$0
7/18/2023

Stack-use-after-scope in blink::AnimationFrameTimingMonitor::Did

#40063901Reporter: cl...@chromium.org
$0
7/18/2023

GPU failure in base::sequence_manager::internal::ThreadControllerWithMessagePumpImpl::DoWork

#40063985Reporter: cl...@chromium.org
$0
7/18/2023

DCHECK failure in value.InAnySharedSpace() in marking-barrier-inl.h

#40063947Reporter: cl...@chromium.org
$0
7/17/2023

Use-after-poison in mojo::InterfaceEndpointClient::HandleValidatedMessage

#40063965Reporter: cl...@chromium.org
$0
7/17/2023

Security: heap-buffer-overflow on WebSQL sqlite3VdbeSorterInit

#40063900Reporter: et...@gmail.com
$1,000
7/14/2023
Showing 4501-4510 of 10808 bugs
1...450451452...1081