Disclosed Chromium Security Bugs

Security: Race Condition UAF in panfrost_ioctl_create_bo

#40062170Reporter: lm...@gmail.com
$20,000
4/12/2023

Security: Container-overflow in SavedTabGroupModel::RemoveTabFromGroup

#40062298Reporter: ch...@gmail.com
$2,000
4/12/2023

CHECK failure: !v8::internal::v8_flags.enable_slow_asserts || (IsSeqString_NonInline(*this)) in

#40062378Reporter: cl...@chromium.org
$0
4/12/2023

register assign error with jit

#40062384Reporter: 5n...@gmail.com
$7,000
4/12/2023

Security: ChromiumOS CRAS Server D-Bus SetGlobalOutputChannelRemix heap-over-flow

#40061617Reporter: hi...@gmail.com
$13,000
4/11/2023

flexfec_receiver_fuzzer: Use-of-uninitialized-value in webrtc::RtpPacket::ParseBuffer

#40062450Reporter: cl...@chromium.org
$0
4/11/2023

cairo:svg-render-fuzzer: Crash in active_edges

#42523173Reporter: mo...@clusterfuzz-external.iam.gserviceaccount.com
$0
4/11/2023

DCHECK failure in !was_told_to_yield_ in default-job.h

#40062343Reporter: cl...@chromium.org
$0
4/10/2023

wasm3:fuzzer: Index-out-of-bounds in Pop

#42523084Reporter: mo...@clusterfuzz-external.iam.gserviceaccount.com
$0
4/8/2023

Heap-use-after-free in base::internal::CrashImmediatelyOnUseAfterFree

#40062446Reporter: cl...@chromium.org
$0
4/8/2023
Showing 4781-4790 of 10808 bugs
1...478479480...1081