Disclosed Chromium Security Bugs

Security: heap-use-after-free in SearchNameNodeByNameInternal

#40060719Reporter: tr...@gmail.com
$10,000
12/9/2022

heap-use-after-free html_element.cc:1850 in blink::HTMLElement::offsetTopForBinding

#40060740Reporter: m....@gmail.com
$7,000
12/9/2022

CHECK failure: c_wrapper_code__value.IsCodeDataContainer() in class-verifiers.cc

#40060753Reporter: cl...@chromium.org
$0
12/9/2022

DCHECK failure in !has_optimized_code() || optimized_code().marked_for_deoptimization() || (CodeKi

#40060754Reporter: cl...@chromium.org
$0
12/9/2022

Security: Select dropdown able to overlap fullscreen notification toast

#40059417Reporter: su...@gmail.com
$3,000
12/7/2022

use-after-free in BrowserCrashEventRouter

#40060644Reporter: ha...@gmail.com
$6,000
12/7/2022

Security: UAF in content::CrOSSystemTracingSession::StartTracingCallbackProxy (browser process)

#40060660Reporter: 0x...@gmail.com
$5,000
12/7/2022

MessagingAPIMessageFilter::OnOpenChannelToNativeApp doesn't verify `const PortContext& source_context`

#40060671Reporter: lu...@chromium.org
$0
12/7/2022

Security: heap-use-after-free in CPDF_FormField::ResetField()

#40060720Reporter: tr...@gmail.com
$10,000
12/7/2022

ChromeRenderFrame.RequestImageForContextNode violates the Rule of 2

#40055238Reporter: rs...@chromium.org
$0
12/6/2022
Showing 5231-5240 of 10856 bugs
1...523524525...1086