Disclosed Chromium Security Bugs

ogre:ogre_deep_fuzz: Heap-double-free in Ogre::Serializer::~Serializer

#504412453Reporter: 87...@developer.gserviceaccount.com
$0
5/31/2026

ogre:ogre_deep_fuzz: Stack-buffer-overflow in Ogre::MeshSerializerImpl::calcPosesSize

#504400320Reporter: 87...@developer.gserviceaccount.com
$0
5/31/2026

libreoffice:schtmlfuzzer: Bad-cast to ScExternalDoubleRefToken from ScExternalSingleRefToken in extendRangeReference

#516218705Reporter: 87...@developer.gserviceaccount.com
$0
5/30/2026

flyway:LocationFuzzer: Security exception in com.code_intelligence.jazzer.sanitizers.RegexInjection.hookInternal

#515796208Reporter: 87...@developer.gserviceaccount.com
$0
5/30/2026

gpac:fuzz_scene: Heap-use-after-free in gf_laser_decoder_del

#517408264Reporter: 87...@developer.gserviceaccount.com
$0
5/30/2026

Security: Permission request spoof on iOS

#40094098Reporter: ch...@gmail.com
$0
5/30/2026

URL Spoofing on Block or allow pop-ups in Chrome

#483899628Reporter: mu...@gmail.com
$1,000
5/30/2026

HTML5 Sandbox Security Model Violation with auxiliary browsing contexts being created despite the lack of "allow-popups" keyword within iframes

#483771899Reporter: ci...@exploit.cat
$1,000
5/30/2026

Heap Buffer Overflow (READ) in TFLite + XNNPack via WebNN

#483971526Reporter: to...@gmail.com
$43,000
5/30/2026

[Omnibox] Empty omnibox is seen after copying the text and pasting on it.

#483875381Reporter: gu...@google.com
$0
5/30/2026
Showing 1-10 of 10546 bugs
1234...1055