Disclosed Chromium Security Bugs

wireshark:fuzzshark_ip_proto-udp: Index-out-of-bounds in dissect_oran_c_section

#525565995Reporter: 87...@developer.gserviceaccount.com
$0
6/23/2026

javassist:ClassFuzzer: Uncaught exception in javassist.bytecode.AttributeInfo.

#42511110Reporter: mo...@clusterfuzz-external.iam.gserviceaccount.com
$0
6/23/2026

mruby:mruby_fuzzer: Heap-buffer-overflow in lv_defined_p

#526798566Reporter: 87...@developer.gserviceaccount.com
$0
6/23/2026

openbabel:fuzz_molecule: Heap-buffer-overflow in OpenBabel::CisTransFrom3D

#519360621Reporter: 87...@developer.gserviceaccount.com
$0
6/23/2026

Security: Download UI and address bar spoof with Google Sans font ligatures (similar to issue 391788835)

#418273622Reporter: al...@alesandroortiz.com
$5,000
6/23/2026

heap-use-after-free in blink::IdentityProvider::resolve

#491869946Reporter: fa...@gmail.com
$10,000
6/23/2026

Heap buffer overflow write in renderer via crafted font in HarfBuzz apply_stch()

#492209815Reporter: ma...@gmail.com
$5,000
6/23/2026

Heap-use-after-free in blink::AsciiStringAttributes blink::CharacterAttributes

#491164019Reporter: 24...@project.gserviceaccount.com
$0
6/23/2026

FrameHost::OpenURL allows renderer-supplied SWITCH_TO_TAB disposition, enabling cross-origin tab detection across all browser windows

#486761170Reporter: yu...@gmail.com
$1,000
6/23/2026

Not preflighting message/ad-auction-trusted-signals-request breaks CSRF prevention features

#488292218Reporter: gl...@apollographql.com
$2,000
6/23/2026
Showing 471-480 of 11332 bugs