| Bug | Description |
|---|
| CVE-2018-20346 | SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an ... |
| CVE-2018-20070 | Incorrect handling of confusable characters in URL Formatter in Google ... |
| CVE-2018-20069 | Failure to prevent navigation to top frame to data URLs in Navigation ... |
| CVE-2018-20068 | Incorrect handling of 304 status codes in Navigation in Google Chrome ... |
| CVE-2018-20067 | A renderer initiated back navigation was incorrectly allowed to cancel ... |
| CVE-2018-20066 | Incorrect object lifecycle in Extensions in Google Chrome prior to ... |
| CVE-2018-20065 | Handling of URI action in PDFium in Google Chrome prior to ... |
| CVE-2018-18359 | Incorrect handling of Reflect.construct in V8 in Google Chrome prior ... |
| CVE-2018-18358 | Lack of special casing of localhost in WPAD files in Google Chrome ... |
| CVE-2018-18357 | Incorrect handling of confusable characters in URL Formatter in Google ... |
| CVE-2018-18356 | An integer overflow in path handling lead to a use after free in Skia ... |
| CVE-2018-18355 | Incorrect handling of confusable characters in URL Formatter in Google ... |
| CVE-2018-18354 | Insufficient validate of external protocols in Shell Integration in ... |
| CVE-2018-18353 | Failure to dismiss http auth dialogs on navigation in Network ... |
| CVE-2018-18352 | Service works could inappropriately gain access to cross origin audio ... |
| CVE-2018-18351 | Lack of proper validation of ancestor frames site when sending lax ... |
| CVE-2018-18350 | Incorrect handling of CSP enforcement during navigations in Blink in ... |
| CVE-2018-18349 | Remote frame navigations was incorrectly permitted to local resources ... |
| CVE-2018-18348 | Incorrect handling of bidirectional domain names with RTL characters ... |
| CVE-2018-18347 | Incorrect handling of failed navigations with invalid URLs in ... |
| CVE-2018-18346 | Incorrect handling of alert box display in Blink in Google Chrome ... |
| CVE-2018-18345 | Incorrect handling of blob URLS in Site Isolation in Google Chrome ... |
| CVE-2018-18344 | Inappropriate allowance of the setDownloadBehavior devtools protocol ... |
| CVE-2018-18343 | Incorrect handing of paths leading to a use after free in Skia in ... |
| CVE-2018-18342 | Execution of user supplied Javascript during object deserialization ... |
| CVE-2018-18341 | An integer overflow leading to a heap buffer overflow in Blink in ... |
| CVE-2018-18340 | Incorrect object lifecycle in MediaRecorder in Google Chrome prior to ... |
| CVE-2018-18339 | Incorrect object lifecycle in WebAudio in Google Chrome prior to ... |
| CVE-2018-18338 | Incorrect, thread-unsafe use of SkImage in Canvas in Google Chrome ... |
| CVE-2018-18337 | Incorrect handling of stylesheets leading to a use after free in Blink ... |
| CVE-2018-18336 | Incorrect object lifecycle in PDFium in Google Chrome prior to ... |
| CVE-2018-18335 | Heap buffer overflow in Skia in Google Chrome prior to 71.0.3578.80 ... |
| CVE-2018-17481 | Incorrect object lifecycle handling in PDFium in Google Chrome prior ... |
| CVE-2018-17480 | Execution of user supplied Javascript during array deserialization ... |