Security Bug Aggregator
@BugsAggregator
Followers
2K
Following
5
Media
3
Statuses
2K
Aggregate disclosed Chromium security bugs.
Joined February 2024
Web version is online: https://t.co/Ft533JrjPV Feel free to leave any comments/suggestions Currently we support time/reward filter, along with the bug search functionality.
tracker.ret2happy.com
Track Chromium security bugs with rewards and reports
1
0
19
[443765373] V8: Bytecode corruption due to integer truncation when writing exception handler offset https://t.co/PMi2HFwjia
0
3
9
[441921804] The rendering process hangs on Android when H.264 encoder falls back to SW encoder https://t.co/2rguWm0SmF
0
0
0
[428484827][reward: $1000] Confusion on permission prompt lead to spoof (using split view) https://t.co/iiZm8cRMAc
0
0
2
[444048032][reward: $5000] V8 Sandbox Bypass: OOB write in v8::bigint::AddAndReturnOverflow https://t.co/C6u9Hx8MIc
0
0
7
[444048019] V8: Integer truncation during Maglev compilation leading to memory corruption https://t.co/NdxnDaQfU9
0
0
1
[430555440] Autofill suggestions appear off-screen, allowing covert access to user data https://t.co/VpnR9IMURD
0
0
0
[443182220][reward: $5000] V8 Sandbox violation: UAF in RemoveFromAsyncWaiterQueueList https://t.co/YL1zje6mmu
0
1
7
[439522866] V8: race condition during TypedArray.sort leads to memory corruption https://t.co/wZf1V0S5fO
0
0
1
[440523110][reward: $3000] (Split View) UI spoofing Upload leads leaking confidential files, Photos to Attacker https://t.co/3Srda1mTbN
0
0
3
[390571618][reward: $3000] Misuse of Permission Dialog Dismiss to Deceive Users About Fullscreen Status https://t.co/wpEqtxhu0g
0
0
2
[420734141][reward: $2000] Screen Share Dialog - Domain Spoof (Similar to permission prompt) https://t.co/1XbnBAaaHL
0
2
9
[424760433][reward: $11000] GPU process crash via WebGPU shader - heap-use-after-free in Mesa brw_live_variables::setup_one_read https://t.co/c3Vyr5mv1k
0
1
11
[440737137][reward: $10000] Use-After-Free in MediaStreamDescriptor https://t.co/qVQOoE7URG
0
1
10
[438226517][reward: $3000] Address Bar Spoofing on Android https://t.co/EEWGjay1Y2
0
2
10
[442444724][reward: $25000] Heap-buffer-overflow/wild-read in dawn::native::`anonymous namespace'::ReflectEntryPointUsingTint https://t.co/51sfRM9XGI
0
0
4
[435875050][reward: $15000] WebGPU dawn::native::d3d12::ResourceAllocatorManager::Tick Heap-Use-After-Free https://t.co/GsK3DfKBTI
0
1
16
[441917796][reward: $3000] WebCodecs VideoFrame constructor crashes browser when non-even width and height are used https://t.co/rEwNnmUPjc
0
0
2
[431309019][reward: $2000] Bypassing Mark of the Web with an HTML File and User Interaction https://t.co/coY0V50NNX
0
1
6
[441668149][reward: $7000] Maglev type confusion via corrupted Phi node metadata https://t.co/R1lCAGP8V2
0
0
11
[439986081] V8: Type confusion in SourceTextModule::GetCycleRoot https://t.co/0YEb7Von1g
0
0
2