Disclosed Chromium Security Bugs

Crash in dawn_wire::server::Server::OnMapReadAsyncCallback

#40093475Reporter: cl...@chromium.org
$0
3/27/2019

Bad-cast to dawn_wire::server::Serverdawn_wire::server::ForwardBufferMapReadAsync in dawn_native::BufferBase::~BufferBase

#40093429Reporter: cl...@chromium.org
$0
3/24/2019

Heap-use-after-free in dawn_wire::server::Server::GetCmdSpace

#40093430Reporter: cl...@chromium.org
$0
3/24/2019

Heap-buffer-overflow in av_realloc_f

#40093433Reporter: cl...@chromium.org
$0
3/22/2019

DCHECK failure in HasIncomingBackEdges(block) implies block_effects.For(block->PredecessorAt(0), b

#40093354Reporter: cl...@chromium.org
$0
3/21/2019

Security: V8: Incorrect type information on SpeculativeSafeIntegerSubtract

#40093360Reporter: ja...@gmail.com
$5,000
3/19/2019

Heap-use-after-free in dawn_native::DeviceBase::Release

#40093335Reporter: cl...@chromium.org
$0
3/16/2019

Heap-use-after-free in dawn_native::DeviceBase::Release

#40093336Reporter: cl...@chromium.org
$0
3/16/2019

Use-of-uninitialized-value in dawn_native::DeviceBase::Release

#40093338Reporter: cl...@chromium.org
$0
3/16/2019

Heap-use-after-free in viz::HostFrameSinkManager::InvalidateFrameSinkId

#40093143Reporter: cl...@chromium.org
$0
3/15/2019
Showing 6741-6750 of 10955 bugs