Disclosed Chromium Security Bugs

Heap-use-after-free in ui::LayerAnimationSequence::ProgressToEnd

#40056045Reporter: cl...@chromium.org
$0
9/17/2021

dawn_wire_server_and_frontend_fuzzer: Heap-use-after-free in dawn_native::ObjectBase::IsError

#40056151Reporter: cl...@chromium.org
$0
9/17/2021

Breakpoint with empty stacktrace

#40055882Reporter: cl...@chromium.org
$0
9/16/2021

DCHECK failure in *p != to_check_ in heap.cc

#40055938Reporter: cl...@chromium.org
$0
9/16/2021

Security: Unexpected JS execution in GetScriptableObjectProperty leads to JS object corruption

#40056119Reporter: gl...@google.com
$0
9/16/2021

Security: TALOS-2021-1241 Google Chrome WebAudio blink::AudioNodeOutput::Pull code execution vulnerability

#40054747Reporter: pi...@thelead82.com
$7,500
9/15/2021

policy_fuzzer: Heap-use-after-free in base::JoinString

#40055308Reporter: cl...@chromium.org
$0
9/15/2021

Security: UAF when extension removes tab group during drag

#40055487Reporter: de...@gmail.com
$10,000
9/15/2021

dawn_wire_server_and_frontend_fuzzer: Container-overflow in tint::diag::Formatter::format

#40055708Reporter: cl...@chromium.org
$0
9/15/2021

hb_subset_fuzzer: Crash in OT::hb_colrv1_closure_context_t::return_t OT::Paint::dispatch

#40056112Reporter: cl...@chromium.org
$0
9/15/2021
Showing 6181-6190 of 10940 bugs