RC RANDOM CHAOS

browser-exploitation

3 posts

#gerpar trended this week; PartitionAlloc already answers it
Article

#gerpar trended this week; PartitionAlloc already answers it

A. Shah (REDLINE) tests the trending #gerpar Chromium heap-overflow claim against PartitionAlloc, CFI, the V8 sandbox, and renderer isolation.

SIGGRAPH 2023 shipped an unfuzzed ingest path
Article

SIGGRAPH 2023 shipped an unfuzzed ingest path

Gaussian splats don't break browser memory protection. Their untrusted parsers do: integer overflow to OOB write in splat viewers, CWE-190 into CWE-787.

The sandbox was never the hard part
Article

The sandbox was never the hard part

CVE-2026-40369 is a 12-byte Mojo IPC overflow in Chromium that converts renderer RCE into browser-process code execution on the host.