Google Fixes Holes in Chrome Release

Thursday, March 5, 2015 @ 01:03 PM gHale


Google’s latest version of its browser, Chrome 41, brings new apps and extension APIs, stability and performance improvements, and, of course, security fixes.

Fifty-one security issues ended up fixed in Chrome 41.0.2272.76, including 13 high-severity and six medium-severity vulnerabilities identified by external researchers.

RELATED STORIES
Firefox 36 Fixes Vulnerabilities
IE Hole Allows Attackers to Phish
Zero Day Abused in Sony Hack: Report
Sony: Risk Management in Real Time

Anonymous researchers earned $14,500 for identifying an out-of bounds write flaw in media (CVE-2015-1212), a use-after-free in v8 bindings (CVE-2015-1216), and a type confusion in v8 bindings (CVE-2015-1217).

The researcher who uses the online moniker Cloudfuzzer reported three out-of-bounds write vulnerabilities in skia filters (CVE-2015-1213, CVE-2015-1214, CVE-2015-1215), a use-after-free in DOM (CVE-2015-1218), and an out-of-bounds read in PDFium. Cloudfuzzer earned $19,000 for his work.

The list of high-severity vulnerabilities also includes an integer overflow in WebGL (CVE-2015-1219) reported by Chen Zhang of the NSFOCUS Security Team, use-after-free flaws in web databases and service workers (CVE-2015-1221, CVE-2015-1222) reported by Collin Payne, a use-after-free in the gif decoder (CVE-2015-1220) found by Aki Helin of OUSPG, a use-after-free in DOM (CVE-2015-1223) identified by Maksymillian Motyl, and a type confusion issue in v8 (CVE-2015-1230) reported by Skylined.

Medium-severity issues include an out-of-bounds read in vpxdecoder, a validation issue in the debugger, an uninitialized value in the Blink rendering engine, an uninitialized value in rendering, and a cookie injection via proxies.

Several vulnerabilities also ended up discovered by the Chrome Security Team.

So far, Google paid out $50,000 to those who contributed to making Chrome 41 more secure.

Google decided to turn the single-day Pwnium competition into a year-round program. Researchers who find a Pwnium-style bug chain in Chrome or Chrome OS and report it through the Chrome Vulnerability Reward Program (VRP) can get up to $50,000.



Leave a Reply

You must be logged in to post a comment.