Disclosed Chromium Security Bugs

Crash in Builtins_StringSubstring

#40061746Reporter: cl...@chromium.org
$0
2/22/2023

DCHECK failure in count <= destination.GetLength() in elements.cc

#40061748Reporter: cl...@chromium.org
$0
2/22/2023

Stack-use-after-return in blink::NGConstraintSpaceBuilder::NGConstraintSpaceBuilder

#40061749Reporter: cl...@chromium.org
$0
2/22/2023

DCHECK failure in kCanBeWeak || (!IsSmi() == HAS_STRONG_HEAP_OBJECT_TAG(ptr_)) in tagged-impl.h

#40061764Reporter: cl...@chromium.org
$0
2/22/2023

Segv on unknown address in Builtins_InterpreterEntryTrampoline

#40061766Reporter: cl...@chromium.org
$0
2/22/2023

Security: SameSite cookie bypass on Android by redirecting to to intent-picker

#40061152Reporter: ha...@gmail.com
$5,000
2/21/2023

Security: Avast aswJsFlt.dll 18.0.1479.0 exposes vulnerable pipe endpoint to renderers

#40061472Reporter: wf...@chromium.org
$0
2/21/2023

UAF in AppIconReader

#40061648Reporter: ha...@gmail.com
$2,000
2/21/2023

Security: UAF in validation_message_overlay_delegate

#40061660Reporter: sp...@gmail.com
$7,000
2/21/2023

Trap in Builtins_CheckTurbofanType

#40061698Reporter: cl...@chromium.org
$0
2/21/2023
Showing 4941-4950 of 10816 bugs
1...494495496...1082