Disclosed Chromium Security Bugs

Potential out-of-bounds D3D11 source rect via unvalidated DComp Overlay path

#497487755Reporter: vm...@google.com
$0
7/16/2026

Potential CPSP bypass in PasswordManager allows sandboxed iframes to leak credentials

#496702621Reporter: vi...@google.com
$0
7/16/2026

Potential UAF in ANGLE Vulkan via dangling FragmentShadingRateImage pointer

#498872764Reporter: vm...@google.com
$0
7/16/2026

Potential Argument Injection in Updater AppCommand leads to SYSTEM EoP

#498892267Reporter: vm...@google.com
$0
7/16/2026

[HIGH] nameconstraints excludedsubtrees bypass via trailing-dot dNSName

#488659351Reporter: ko...@gmail.com
$0
7/16/2026

ANGLE/Vulkan: glUniformBlockBinding bypasses UBO dirty-type mask causing GPU OOB read

#500052361Reporter: vm...@google.com
$0
7/16/2026

Integer overflow in ruy pack kernel offset leads to heap OOB write in the GPU process via WebNN quantized Gemm

#497159159Reporter: je...@gmail.com
$11,000
7/16/2026

Integer overflow in ruy SumsBytes leads to heap OOB write in the GPU process via WebNN quantized Gemm

#497202425Reporter: je...@gmail.com
$11,000
7/16/2026

Security issue update: Heap-Buffer-Overflow in ResourceKey::Builder::finish via Canvas2D Dash Pattern Size Packing Truncation

#495700484Reporter: se...@gmail.com
$3,000
7/16/2026

V8: Missing RwxMemoryWriteScope in loong64/mips64 PatchToJump Causes SIGSEGV During Deoptimization

#499018901Reporter: ca...@gmail.com
$0
7/16/2026
Showing 61-70 of 11332 bugs
1...678...1134