Disclosed Chromium Security Bugs

DevTools Sources panel with Service Worker causes POST to be resent bypassing SameSite=Strict

#470574526Reporter: j....@gmail.com
$1,000
4/22/2026

Security: Busy Rendering Cause Layer to Persist on Target Website Allow Address Bar Spoofing & Clickjacking Attack

#40057499Reporter: su...@gmail.com
$3,000
4/22/2026

H.266 parser OOB write in ParseProfileTierLevel (enable_platform_vvc builds)

#474391729Reporter: sn...@gmail.com
$0
4/22/2026

ANGLE HandleAllocator: Invalid iterator access on empty vector → UAF + OOB (double-free plausible)

#452209503Reporter: gl...@gmail.com
$1,000
4/22/2026

CHECK failure: byte_length >= memory.min_memory_size in wasm-objects.cc

#474714470Reporter: 24...@project.gserviceaccount.com
$0
4/22/2026

DCHECK failure in !has_key() in maglev-ir.h

#475276561Reporter: 24...@project.gserviceaccount.com
$0
4/22/2026

DCHECK failure in is_first_use_in_isolate == !isolate_info->native_modules.contains(native_module)

#475276552Reporter: 24...@project.gserviceaccount.com
$0
4/22/2026

DCHECK failure in (key) != nullptr in cached-unordered-map.h

#475344952Reporter: 24...@project.gserviceaccount.com
$0
4/22/2026

DCHECK failure in !is_shared() in backing-store.cc

#475344953Reporter: 24...@project.gserviceaccount.com
$0
4/22/2026

DCHECK failure in 0 == level_ in mutex.h

#475333711Reporter: 24...@project.gserviceaccount.com
$0
4/22/2026
Showing 521-530 of 10725 bugs
1...525354...1073