Disclosed Chromium Security Bugs

A null pointer dereference has been discovered in V8 compiler which affects the latest version.

#40050993Reporter: se...@ncsc.gov.uk
$5,000
3/23/2020

CHECK failure: BigIntAsUintN of kRepWord64 (BigInt) cannot be changed to kRepWord32 in represen

#40050843Reporter: b3...@gmail.com
$0
3/20/2020

Use-of-uninitialized-value in v8::internal::Runtime_StringCompareSequence

#40050950Reporter: cl...@chromium.org
$0
3/19/2020

Crash in cc::LayerTreeImpl::TotalScrollOffset

#40050871Reporter: cl...@chromium.org
$0
3/18/2020

Security: heap-use-after-free in DesktopMediaPickerController::WebContentsDestroyed

#40050913Reporter: gl...@google.com
$0
3/18/2020

UAF in chrome!ui::AXNodeData::HasState

#40095881Reporter: pa...@blackowlsec.com
$0
3/17/2020

Security: Debug check failed: 0 <= index && index < node->op()->ValueInputCount().

#40050847Reporter: b3...@gmail.com
$0
3/11/2020

Security: Negative size passed to memcpy() in fts3NodeAddTerm (OOB read)

#40050709Reporter: le...@gmail.com
$0
3/10/2020

Security: Negative size passed to memcpy() in fts3IncrmergePush

#40050710Reporter: le...@gmail.com
$0
3/10/2020

Security: Memory leak in fts4, matchinfo()

#40050711Reporter: le...@gmail.com
$0
3/10/2020
Showing 6601-6610 of 10978 bugs