Out of bounds access in v8. Credit to Guang Gong of Qihoo 360 via pwn2own.
Use-after-free in AppCache.
Cross-origin bypass in DOM. Credit to Mariusz Mlynski.
Cross-origin bypass in core. Credit to Mariusz Mlynski.
Out of bounds access in v8.
Out of bounds access in Skia. Credit to cloudfuzzer.
Use-after-free in Extensions.
Type confusion in PDFium. Credit to Atte Kettunen of OUSPG.
Out of bounds access in PDFium. Credit to Hanno Böck.
Use-after-free in DOM. Credit to Long Liu of Qihoo 360Vulcan Team.
Out of bounds access in PDFium. Credit to Karl Skomski.
Scheme bypass in PDFium. Credit to Til Jasper Ullrich.
Use-after-free in Infobars. Credit to Khalil Zhani.
Integer overflow in Sfntly. Credit to miaubiz.
Content spoofing in Omnibox. Credit to Luan Herrera.
Escaping issue in saved pages. Credit to Inti De Ceukelaire.
Wildcard matching issue in CSP. Credit to Michael Ficarra / Shape Security.
Scheme bypass in CSP. Credit to Michael Ficarra / Shape Security.
Various fixes from internal audits, fuzzing and other initiatives.