Disclosed Chromium Security Bugs

tint_spv_reader_wgsl_writer_fuzzer: Bad-cast to const tint::ast::Pointer from tint::ast::Vector in tint::typ::TypePair tint::typ::Call_type

#40055754Reporter: cl...@chromium.org
$0
8/15/2021

wasm3:fuzzer: Index-out-of-bounds in CopyStackIndexToSlot

#42500206Reporter: mo...@clusterfuzz-external.iam.gserviceaccount.com
$0
8/15/2021

tidy-html5:tidy_general_fuzzer: Heap-use-after-free in prvTidyInsertedToken

#42500198Reporter: mo...@clusterfuzz-external.iam.gserviceaccount.com
$0
8/15/2021

Heap-buffer-overflow in sw::SpirvShader::getImageSampler

#40054409Reporter: cl...@chromium.org
$0
8/14/2021

tint_first_index_offset_fuzzer: Stack-buffer-overflow in tint::fuzzers::ExtractFirstIndexOffsetInputs

#40055731Reporter: cl...@chromium.org
$0
8/14/2021

Security: Type confusion bug in LoadSuperIC

#40055688Reporter: la...@gmail.com
$20,000
8/13/2021

sqlite3_lpm_fuzzer: Segv on unknown address in sqlite3MemCompare

#40055502Reporter: cl...@chromium.org
$0
8/10/2021

espeak-ng:ssml-fuzzer: Stack-buffer-overflow in TranslateWord2

#42499906Reporter: mo...@clusterfuzz-external.iam.gserviceaccount.com
$0
8/7/2021

Security: Openjpeg security fix may be missing

#40054821Reporter: ad...@chromium.org
$500
8/4/2021

Security: chrome.debugger API bypasses the runtime_blocked_hosts Enterprise policy

#40053634Reporter: ro...@robwu.nl
$5,000
8/3/2021
Showing 6231-6240 of 10940 bugs