Disclosed Chromium Security Bugs

DCHECK failure in MarkCompactCollector::IsMapOrForwarded(invalidated_object.map()) in invalidated-

#40059428Reporter: cl...@chromium.org
$0
8/2/2022

Heap-use-after-free in reporting::NetworkConditionService::NetworkConditionServiceObserver::RegisterRTT

#40059448Reporter: cl...@chromium.org
$0
8/2/2022

rdkit:mol_data_stream_to_mol_fuzzer: Bad-cast to RDKit::QueryBond::QUERYBOND_QUERY' (aka 'Query') from invalid vptr in RDKit::QueryBond::~QueryBond

#42514103Reporter: mo...@clusterfuzz-external.iam.gserviceaccount.com
$0
8/1/2022

Security: Extensions can capture contents of local files using Page.captureScreenshot with fromSurface set to false

#40053089Reporter: de...@gmail.com
$3,000
8/1/2022

Security: [ANGLE] Heap use-after-free caused by State::detachBuffer

#40059410Reporter: gg...@gmail.com
$10,000
8/1/2022

gnutls:gnutls_psk_client_fuzzer: Use-of-uninitialized-value in _gnutls_psk_recv_params

#42513990Reporter: mo...@clusterfuzz-external.iam.gserviceaccount.com
$0
7/29/2022

Security: URL spoofing using LATIN SMALL LETTER L WITH STROKE

#40057314Reporter: ra...@gmail.com
$500
7/29/2022

heap-use-after-free : media::VTVideoEncodeAccelerator::GetSupportedProfiles

#40059278Reporter: cr...@system.gserviceaccount.com
$0
7/29/2022

Security: heap-buffer-overflow on ash/wm/window_animations.cc (chromeOS)

#40059305Reporter: rh...@gmail.com
$3,000
7/29/2022

Tab reliably crashing with STATUS_ACCESS_VIOLATION with reproduction steps

#40059315Reporter: mi...@gmail.com
$1,000
7/29/2022
Showing 5571-5580 of 10901 bugs
1...557558559...1091