Disclosed Chromium Security Bugs

Potential UAF in NetworkContext::RevokeNetworkForNonces via synchronous destruction

#491930142Reporter: rj...@google.com
$0
6/24/2026

Potential Heap and Stack Overflows in H265Decoder via Dependent Slice Segments

#490222151Reporter: rj...@google.com
$0
6/24/2026

Heap buffer overflow in BufferMtl shadow copy sync during bufferData leads to GPU process memory corruption in macOS

#489494022Reporter: je...@gmail.com
$77,000
6/24/2026

Heap-use-after-free in CSS attribute rule matching via lazy style synchronization

#492735384Reporter: je...@gmail.com
$0
6/24/2026

Heap corruption in GPU process via unchecked tensor rank in WebNN constant transpose

#493099940Reporter: je...@gmail.com
$36,000
6/24/2026

memory corruption in glsl::glslTypeGen::GetConstantByType leads to Android gpu crash

#485945891Reporter: ha...@gmail.com
$32,000
6/24/2026

DCHECK failure in memory_order != AtomicMemoryOrder::kAcqRel in wasm-lowering-reducer.h

#493171989Reporter: sa...@google.com
$0
6/24/2026

Security: heap-use-after-free in blink::WebAudioSourceProviderImpl::TeeFilter::Render

#488188176Reporter: zh...@gmail.com
$8,000
6/24/2026

wabt:read_binary_ir_fuzzer: Container-overflow in std::__1::__wrap_iter std::__1::__rotate_forward

#510342702Reporter: 87...@developer.gserviceaccount.com
$0
6/23/2026

openbabel:fuzz_convert: Heap-buffer-overflow in OpenBabel::OBAtom::SetVector

#520650734Reporter: 87...@developer.gserviceaccount.com
$0
6/23/2026
Showing 461-470 of 11332 bugs