Disclosed Chromium Security Bugs

poppler:qt_label_fuzzer: Use-of-uninitialized-value in XRef::readXRef

#472635023Reporter: 87...@developer.gserviceaccount.com
$0
1/3/2026

poppler:doc_fuzzer: Use-of-uninitialized-value in Parser::shift

#462673430Reporter: 87...@developer.gserviceaccount.com
$0
1/3/2026

poppler:qt_label_fuzzer: Use-of-uninitialized-value in Parser::getObj

#472312313Reporter: 87...@developer.gserviceaccount.com
$0
1/3/2026

mruby:mruby_fuzzer: Segv on unknown address in mrb_bint_reduce

#472538295Reporter: 87...@developer.gserviceaccount.com
$0
1/3/2026

Check failed: !WriteBarrier::IsRequired(heap_object, Tagged(value)).

#446463984Reporter: je...@gmail.com
$10,000
1/3/2026

CHECK failure: untyped_->count(slot.address()) > 0 in heap-verifier.cc

#447457117Reporter: 24...@project.gserviceaccount.com
$0
1/3/2026

DCHECK failure in !IsSnapshot() in maglev-ir.h

#446947241Reporter: 24...@project.gserviceaccount.com
$0
1/3/2026

heap-use-after-free in content::indexed_db::Database::connections_ when force_closing_ is true

#446722008Reporter: so...@gmail.com
$100,000
1/2/2026

Spoof on virtual keyboard

#446463993Reporter: sa...@gmail.com
$3,000
1/2/2026

Triggering screenshare from an unloading page in a cross-process navigation displays the wrong origin

#442860743Reporter: do...@gmail.com
$10,000
1/2/2026
Showing 761-770 of 10158 bugs
1...767778...1016