Disclosed Chromium Security Bugs

tint_spv_reader_msl_writer_fuzzer.exe: Heap-use-after-free in tint::fuzzers::CommonFuzzer::Run

#40054497Reporter: cl...@chromium.org
$0
4/30/2021

tint_spv_reader_wgsl_writer_fuzzer: Heap-use-after-free in tint::fuzzers::CommonFuzzer::Run

#40054514Reporter: cl...@chromium.org
$0
4/30/2021

tint_spv_reader_spv_writer_fuzzer: Heap-use-after-free in tint::fuzzers::CommonFuzzer::Run

#40054529Reporter: cl...@chromium.org
$0
4/30/2021

dawn_spirv_cross_glsl_fast_fuzzer: Use-of-uninitialized-value in spirv_cross::Compiler::CombinedImageSamplerUsageHandler::add_dependency

#40054469Reporter: cl...@chromium.org
$0
4/29/2021

Lacros 3D Canvas can leak outside of iFrame

#40054471Reporter: pe...@chromium.org
$0
4/29/2021

DCHECK failure in HasRemainingBytes(kUint8Size) in preparse-data-impl.h

#40054502Reporter: cl...@chromium.org
$0
4/29/2021

CHECK failure: Bytecode mismatch at offset 2 in interpreter.cc

#40054503Reporter: cl...@chromium.org
$0
4/29/2021

DCHECK failure in expr->scope()->outer_scope() == current_scope() in bytecode-generator.cc

#40054504Reporter: cl...@chromium.org
$0
4/29/2021

CHECK failure: !v8::internal::FLAG_enable_slow_asserts || (IsJSReceiver()) in js-objects-inl.h

#40054506Reporter: cl...@chromium.org
$0
4/29/2021

tint_spv_reader_hlsl_writer_fuzzer.exe: Heap-use-after-free in tint::fuzzers::CommonFuzzer::Run

#40054534Reporter: cl...@chromium.org
$0
4/29/2021
Showing 6391-6400 of 10955 bugs