Disclosed Chromium Security Bugs

←Back to Dashboard

Search Titles

Sort By

Time Range

Reward Range

Bugs per Page

GPU process crash via WebGPU shader - wild-deref in Mesa try_opt_exclusive_scan_to_inclusive

#425390965•Reporter: a7...@gmail.com

$10,000

10/1/2025

GPU process crash via WebGPU shader - heap-buffer-overflow in Mesa anv_nir_compute_push_layout

#421399969•Reporter: a7...@gmail.com

$10,000

9/23/2025

Deoptimize: inconsistency in materialization can insert unexpected value to the interpreter stack frame

#423050527•Reporter: ak...@gmail.com

$10,000

9/17/2025

V8 Sandbox Bypass: AAW via clobbered i32 high word on return value in Liftoff

#421403261•Reporter: se...@gmail.com

$20,000

9/10/2025

Security: Race condition in AudioRendererImpl

#420150619•Reporter: su...@gmail.com

$8,000

9/4/2025

Security: Fatal error in src/compiler/turboshaft/operations.cc, line 152

#411802156•Reporter: da...@gmail.com

$7,000

8/29/2025

V8 Sandbox Bypass: Stack corruption via signature mismatch during call baseline code

#417636716•Reporter: iw...@gmail.com

$20,000

8/26/2025

V8 Sandbox Bypass: OOB writ in Module::GetModuleNamespace

#414831374•Reporter: v8...@gmail.com

$5,000

8/22/2025

heap-use-after-free in cc::LayerTreeHost::NotifyTransitionRequestsFinished

#411573532•Reporter: m....@gmail.com

$50,000

8/21/2025

V8 Sandbox Bypass: OOB write in icu_74::CharString::append

#403372467•Reporter: v8...@gmail.com

$5,000

8/21/2025

Showing 1-10 of 865 bugs

1 2 3 4...87