Disclosed Chromium Security Bugs

Security: v8/blink: Leaked ObservableArray Object leads to TypeConfusions, leading to RCE

#40060575Reporter: ti...@chromium.org
$0
11/25/2022

File System Access API - Save shows saving as JPEG, however, downloaded as an executable .bat

#40055833Reporter: ar...@gmail.com
$1,000
11/23/2022

Security: RCE - Download Silently *.exe or *.dll to users Desktop or Downloads folder

#40057030Reporter: ma...@gmail.com
$3,000
11/23/2022

FSA: Add an extra prompt when saving potentially dangerous files

#40059513Reporter: as...@chromium.org
$0
11/23/2022

Security: Heap-use-after-free in ManagePasswordsUIController::SavePassword

#40060559Reporter: me...@gmail.com
$4,000
11/23/2022

Null-dereference READ in blink::NGPhysicalBoxFragment::OverflowClipRect

#40060421Reporter: cl...@chromium.org
$0
11/21/2022

libraw:libraw_cr2_fuzzer: Use-of-uninitialized-value in LibRaw::guess_RAFDataGeneration

#42518417Reporter: mo...@clusterfuzz-external.iam.gserviceaccount.com
$0
11/21/2022

Security: Possible to include mixed content in an about:blank popup opened by a https page

#40094750Reporter: de...@gmail.com
$3,000
11/19/2022

Security: UAF in AppWindowContentsImpl::~AppWindowContentsImpl

#40060350Reporter: jt...@gmail.com
$10,000
11/18/2022

javascript URL is broken in ChromeCustom tab for Android Apps

#40056896Reporter: as...@gmail.com
$1,000
11/17/2022
Showing 5261-5270 of 10856 bugs
1...526527528...1086