Sure, essentially all bugs are security bugs. That follows trivially from the fact that security isn't one-size-fits-all and the fact that bugs are deviations from intended behaviour. Somebody's security assumptions might have depended on the intended behaviour, the deviation violates their assumption, a security hole is a potential consequence.
We see this in real world security too. If the security policy relies on assumptions about employees obeying other policies (e.g. safety policies) then in fact those policies are an element of your security policy, deviation from them can have security consequences.