Chrome gets patched, digital bounty hunters get paid
Google has released a stable version of Chrome 5.0.375.127 for Windows, Mac and Linux platforms.
The update patches a number of critical and serious vulnerabilities related to memory corruption, (possible) address bar spoofing and browser crashes.
The Mountain View-based company also deployed a workaround for a critical vulnerability where the root cause was traced to an external Windows kernel bug.
Meanwhile, bug bounty hunters collected the big bucks for finding the browser vulnerabilities, with digital bounty hunter Sergey Glazunov claiming a cool $1337 for identifying a critical memory corruption.
Other paid bounties include:
- [$500] High Memory corruption with SVGs. Credit to wushi of team509.
- [$500] High Bad cast with text editing. Credit to wushi of team509.
- [$1000] High Possible address bar spoofing with history bug. Credit to Mike Taylor.
- [$2000] High Memory corruption in MIME type handling. Credit to Sergey Glazunov.
- [$1337] Critical Crash on shutdown due to notifications bug. Credit to Sergey Glazunov.
- [$1000] High Memory corruption with Ruby support. Credit to kuzzcc.
- [$1000] High Memory corruption with Geolocation support. Credit to kuzzcc.