Google Patches Five Chrome Bugs, Pays $6000 in Bounties
Google Patches Five Chrome Bugs, Pays $6000 in Bounties
Posted 01/25/2012 at 6:27am
| by Pulkit Chandna
1
Comment
Print
Google earlier this week updated the Chrome Stable channel to 16.0.912.77 for Windows, Mac, Linux and Chrome Frame, patching four privately reported vulnerabilities in its browser. How come only four, you ask, when the headline clearly mentions five? Actually the fifth was patched a couple of weeks back, but Google mistakenly failed to include it in the release notes.
The four bugs fixed this week all carry a “high” severity rating and were discovered using AddressSanitizer. The bugs are being kept private until a majority of Chrome users have updated to the latest stable build of the browser.
The fifth vulnerability, which was fixed during the last update but not included in the release notes, is the odd one out with a “critical” rating. A use-after-free vulnerability in Chrome’s Safe Browsing technology, it caused the browser to crash when the user refreshed the page on seeing the browser’s anti-malware warning. It was discovered by security researcher Chamal de Silva, who reported it to Google in December and earned a $3,133 bounty in the process.
More like this
1
Comment
Comments are closed on this article
firefox91
January 25, 2012 at 8:14am
I gave Chrome good shot installing it on all my systems and ran it exclusively for about 2 months. In the end I switched back to Firefox for 2 reasons. Ad blocking extensions work much better in Firefox. In 1 site in particular I hit, Firefox makes it look like a "normal" site. With Chrome, I kept getting new windows opening up for ads. Second, the bookmark synching doesn't work very well. If I add a new bookmark, that seems to flow. But if I delete one on one system, it still remains on all the others. When they gets those things tweaked I will give it another shot because I really did like it. Until then, Firefox is still my browser of choice.
Connect with MaximumPC
Featured Content
The gang discusses the GTX 690, Trinity, Ivy Bridge, Amazon, big-box stores, MMOs,...
This month's issue
Feature
Build a PC On Any Budget
Feature
Cloud Services Showdown
How-To
Encrypt Your External Drive
Build It
Upgrade an X58 Rig
Most Commented Articles
Latest Max PC Tweets
- maximumpc: Original RickRoll Video Returns to YouTube After 24-Hour Copyright Hiatus http://t.co/MaH9Sxyy1 day 13 hours ago
- maximumpc: Corsair has decided not to go forward with its $78 million IPO, citing weak equity market conditions http://t.co/A5a4DAzj1 day 13 hours ago
- maximumpc: Want to work at Maximum PC? Our Online Managing Editor, Alex, is moving away, so we need a new one. http://t.co/9Z7JCh0E3 days 10 hours ago
