Google has fixed more than two dozen vulnerabilities in its Chrome browser and also implemented a defense against the BEAST SSL attack. The bugs fixed in the new version of Chrome include 11 high-severity flaws.
As part of its bug bounty program, Google paid more than $26,000 in rewards to researchers who reported bugs to the company that were fixed in the newest version of the browser. Among the more serious vulnerabilities fixed in Chrome is a series of same-origin policy violations (CVE-2011-3881) that were discovered and reported by a researcher named Sergey Glazunov. That submission alone earned him $12,174 in rewards.
The full list of bugs fixed in Chrome 15.0.874.102:
Chrome was not directly vulnerable to the BEAST SSL attack that was developed by Thai Duong and Juliano Rizzo and disclosed a few weeks ago, but Google made a change to the browser to defend against such attacks anyway.
βAlthough Chrome is not directly affected by the attack, the NSS network library was updated to include a defense against so-called BEAST. This defense may expose bugs in Brocade hardware. Brocade is working on the issue,β the company said in a blog post.
code.google.com/p/chromium/issues/detail?id=100059
code.google.com/p/chromium/issues/detail?id=100332
code.google.com/p/chromium/issues/detail?id=86758
code.google.com/p/chromium/issues/detail?id=88949
code.google.com/p/chromium/issues/detail?id=90217
code.google.com/p/chromium/issues/detail?id=91218
code.google.com/p/chromium/issues/detail?id=94487
code.google.com/p/chromium/issues/detail?id=95374
code.google.com/p/chromium/issues/detail?id=95992
code.google.com/p/chromium/issues/detail?id=96047
code.google.com/p/chromium/issues/detail?id=96292
code.google.com/p/chromium/issues/detail?id=96885
code.google.com/p/chromium/issues/detail?id=96902
code.google.com/p/chromium/issues/detail?id=97148
code.google.com/p/chromium/issues/detail?id=97599
code.google.com/p/chromium/issues/detail?id=98053
code.google.com/p/chromium/issues/detail?id=98064
code.google.com/p/chromium/issues/detail?id=98407
code.google.com/p/chromium/issues/detail?id=98556
code.google.com/p/chromium/issues/detail?id=98773
code.google.com/p/chromium/issues/detail?id=99138
code.google.com/p/chromium/issues/detail?id=99167
code.google.com/p/chromium/issues/detail?id=99211
code.google.com/p/chromium/issues/detail?id=99294
code.google.com/p/chromium/issues/detail?id=99512
code.google.com/p/chromium/issues/detail?id=99553
code.google.com/p/chromium/issues/detail?id=99750
code.google.com/p/chromium/issues/detail?id=99880
googlechromereleases.blogspot.com/2011/10/chrome-stable-release.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+GoogleChromeReleases+%28Google+Chrome+Releases%29
threatpost.com/google-fixes-27-bugs-chrome-15-102511/
threatpost.com/new-attack-breaks-confidentiality-model-ssl-allows-theft-encrypted-cookies-091911/
threatpost.com/new-attack-breaks-confidentiality-model-ssl-allows-theft-encrypted-cookies-091911/