Disclosed Chromium Security Bugs

DCHECK failure in type.representation() == MachineRepresentation::kFloat64 || type.representation(

#40060994Reporter: cl...@chromium.org
$0
12/23/2022

CHECK failure: next_index().Number() >= 0 in objects-debug.cc

#40060999Reporter: cl...@chromium.org
$0
12/23/2022

Compromised web renderer that *hasn't* run any content scripts can spoof chrome.storage (and other API calls) for any extension

#40055021Reporter: Ju...@microsoft.com
$0
12/22/2022

wayland_buffer_fuzzer: Use-of-uninitialized-value in ui::WaylandScreen::AddOrUpdateDisplay

#40056815Reporter: cl...@chromium.org
$0
12/22/2022

Security: Potential UAF in WebstoreInstallWithPrompt

#40060531Reporter: om...@talon-sec.com
$2,000
12/22/2022

Heap-use-after-free in PresShell::DispatchSynthMouseMove

#40060727Reporter: cl...@chromium.org
$0
12/22/2022

Heap-use-after-free in blink::StyleVariables::operator==

#40060747Reporter: m....@gmail.com
$9,000
12/22/2022

DCHECK failure in !node->is_dead() in maglev-regalloc.cc

#40060772Reporter: cl...@chromium.org
$0
12/22/2022

CHECK failure: properties_or_hash__value.IsSmi() || properties_or_hash__value.IsFixedArrayBase(

#40060777Reporter: cl...@chromium.org
$0
12/22/2022

DCHECK failure in IsPrimitiveMap() in map-inl.h

#40060803Reporter: cl...@chromium.org
$0
12/22/2022
Showing 5131-5140 of 10831 bugs
1...513514515...1084