Disclosed Chromium Security Bugs

Fatal error in Type cast failed in CAST(elements) at ../../src/codegen/code-stub-assembler.cc:1

#416777651Reporter: 24...@project.gserviceaccount.com
$0
9/18/2025

arrow:parquet-arrow-fuzz: Heap-buffer-overflow in parquet::DeltaByteArrayDecoderImpl

#433001963Reporter: 87...@developer.gserviceaccount.com
$0
9/17/2025

htslib:hts_open_fuzzer: Crash in sam_hrecs_free_tags

#444492076Reporter: 87...@developer.gserviceaccount.com
$0
9/17/2025

docker-client:RegistryAuthFuzzer: Security exception in com.spotify.docker.client.shaded.com.fasterxml.jackson.databind.util.TokenBuffer

#444547717Reporter: 87...@developer.gserviceaccount.com
$0
9/17/2025

vlc:vlc-demux-dec-libfuzzer: Heap-buffer-overflow in Reassemble

#437694937Reporter: 87...@developer.gserviceaccount.com
$0
9/17/2025

SameSite Strict cookies are included when middle clicking a link to another site in a PDF document

#416942878Reporter: gn...@gmail.com
$2,000
9/17/2025

Trap in Builtins_StringSubstring

#423674623Reporter: sa...@google.com
$0
9/17/2025

Deoptimize: inconsistency in materialization can insert unexpected value to the interpreter stack frame

#423050527Reporter: ak...@gmail.com
$10,000
9/17/2025

JSON.parse() Out-of-Bounds Access to DescriptorArray

#423459708Reporter: hu...@gmail.com
$4,000
9/17/2025

DCHECK failure in decoder_->ok() in function-body-decoder-impl.h

#404941115Reporter: cf...@google.com
$0
9/17/2025
Showing 51-60 of 8555 bugs
1...567...856