Disclosed Chromium Security Bugs

Security: navigator.clipboard.read() can lead to mutation XSS

#40059358Reporter: mi...@bentkowski.info
$3,000
8/4/2022

heap-buffer-overflow : device::BluetoothAdapterMac::LowEnergyCentralManagerUpdatedState

#40059438Reporter: cr...@system.gserviceaccount.com
$0
8/4/2022

dawn_wire_server_and_frontend_fuzzer: Heap-use-after-free in dawn::native::DeviceBase::DestroyObjects

#40059443Reporter: cl...@chromium.org
$0
8/4/2022

CHECK failure: object.Size() == size in heap.cc

#40059480Reporter: cl...@chromium.org
$0
8/3/2022

DCHECK failure in MarkCompactCollector::IsMapOrForwarded(invalidated_object.map()) in invalidated-

#40059428Reporter: cl...@chromium.org
$0
8/2/2022

Heap-use-after-free in reporting::NetworkConditionService::NetworkConditionServiceObserver::RegisterRTT

#40059448Reporter: cl...@chromium.org
$0
8/2/2022

rdkit:mol_data_stream_to_mol_fuzzer: Bad-cast to RDKit::QueryBond::QUERYBOND_QUERY' (aka 'Query') from invalid vptr in RDKit::QueryBond::~QueryBond

#42514103Reporter: mo...@clusterfuzz-external.iam.gserviceaccount.com
$0
8/1/2022

Security: Extensions can capture contents of local files using Page.captureScreenshot with fromSurface set to false

#40053089Reporter: de...@gmail.com
$3,000
8/1/2022

Security: [ANGLE] Heap use-after-free caused by State::detachBuffer

#40059410Reporter: gg...@gmail.com
$10,000
8/1/2022

gnutls:gnutls_psk_client_fuzzer: Use-of-uninitialized-value in _gnutls_psk_recv_params

#42513990Reporter: mo...@clusterfuzz-external.iam.gserviceaccount.com
$0
7/29/2022
Showing 5541-5550 of 10875 bugs
1...554555556...1088