Disclosed Chromium Security Bugs

Use-after-poison in blink::LayoutObject::ViewRect

#40051577Reporter: cl...@chromium.org
$0
5/29/2020

Bad-cast to blink::Node from invalid vptr in blink::LayoutObject::GetDocument

#40051579Reporter: cl...@chromium.org
$0
5/29/2020

dlplibs:wdbfuzzer: Stack-buffer-overflow in WPSEmbeddedObject::operator=

#42483952Reporter: mo...@clusterfuzz-external.iam.gserviceaccount.com
$0
5/27/2020

Check Raw Clipboard permission and feature flag browser-side

#40050977Reporter: hu...@chromium.org
$0
5/24/2020

Use after free in CodeSerializer::Deserialize

#40051426Reporter: gk...@gmail.com
$500
5/24/2020

Heap-use-after-free in ChromePasswordManagerClient::OnPaste

#40096025Reporter: cl...@chromium.org
$0
5/21/2020

Unexpected reveal of service worker interception by using nextHopProtocol

#40051453Reporter: so...@gmail.com
$2,000
5/20/2020

☂ Site Isolation Bypass via component extensions (e.g. via "Google Hangouts")

#40050914Reporter: gl...@google.com
$0
5/13/2020

Security of some component extensions relies on untrustworthy MessageSender.id

#40050931Reporter: gl...@google.com
$0
5/12/2020

Security of media-router built-in extension relies on untrustworthy MessageSender.id

#40051399Reporter: gl...@google.com
$0
5/12/2020
Showing 6571-6580 of 10978 bugs