Security Holes Fixed in Chrome

Tuesday, October 22, 2013 @ 10:10 AM gHale


A new Chrome release last week means Google patched more security flaws.

This time around Chrome 30.0.1599.101 released for Windows, Mac, Linux and Chrome Frame and Google fixed five security issues, three of which ended up reported by external researchers.

RELATED STORIES
Mozilla Ships a More Secure Firefox 24
Patched Safari Bug under Attack
Text String Takes Bite Out of Apple
Still a Hack, but Wrong Person

Atte Kettunen of OUSPG has identified a high-severity use-after-free issue in XHR for which he earned $1,000 in reward money from Google.

Cloudfuzzer found two high-severity use-after-free vulnerabilities – one in editing and one in forms. For each of the flaws earned $2,000.

Google’s internal security team has also identified various problems as a result of audits, fuzzing and other initiatives.

The technical details of these vulnerabilities will remain secret until a majority of users have updated their web browser.

Google also just unveiled it is rewarding researchers who develop security patches for open source software.



Leave a Reply

You must be logged in to post a comment.