Google has fixed more than 30 security vulnerabilities in its Chrome browser with a new version the company released on Friday. The company also paid out more than $14,000 in rewards to the various researchers who reported bugs that were fixed with Chrome 14.0.835.163.
The new version of Chrome includes fixes for 15 high-risk vulnerabilities, but none of the flaws in this release were rated critical by Google’s security team. The highest payout for one of the fixed bugs was a $2337 reward for Sergey Glazunov, who reported a bug that caused unintended access to V8 objects in Chrome. Many of the bugs fixed in this version of the browser were discovered by Google’s internal security team, which don’t qualify for the reward. However, the company still paid out $14,337 in bounties with this release.
Interestingly, Google also included a thank-you to a broad set of researchers–including some at Microsoft and Apple–for their work in helping to prevent certain flaws from ever making it into Chrome stable releases.
“In addition, we would like to thank ‘send.my.spam.to’, ‘Feiler89’, miaubiz, The Microsoft Java Team / Microsoft Vulnerability Research (MSVR), Chris Rohlf of Matasano, Chamal de Silva, Christian Holler, ‘simon.sarris’ and Alexey Proskuryakov of Apple for working with us in the development cycle and preventing bugs from ever reaching the stable channel. Various rewards were issued,” Google’s blog post said.
The full list of fixes in Chrome is:
code.google.com/p/chromium/issues/detail?id=49377
code.google.com/p/chromium/issues/detail?id=51464
code.google.com/p/chromium/issues/detail?id=57908
code.google.com/p/chromium/issues/detail?id=75070
code.google.com/p/chromium/issues/detail?id=76771
code.google.com/p/chromium/issues/detail?id=78427
code.google.com/p/chromium/issues/detail?id=78639
code.google.com/p/chromium/issues/detail?id=80680
code.google.com/p/chromium/issues/detail?id=82438
code.google.com/p/chromium/issues/detail?id=83031
code.google.com/p/chromium/issues/detail?id=85041
code.google.com/p/chromium/issues/detail?id=89219
code.google.com/p/chromium/issues/detail?id=89330
code.google.com/p/chromium/issues/detail?id=89564
code.google.com/p/chromium/issues/detail?id=89795
code.google.com/p/chromium/issues/detail?id=89991
code.google.com/p/chromium/issues/detail?id=90134
code.google.com/p/chromium/issues/detail?id=90173
code.google.com/p/chromium/issues/detail?id=91120
code.google.com/p/chromium/issues/detail?id=91197
code.google.com/p/chromium/issues/detail?id=92651
code.google.com/p/chromium/issues/detail?id=92959
code.google.com/p/chromium/issues/detail?id=93416
code.google.com/p/chromium/issues/detail?id=93420
code.google.com/p/chromium/issues/detail?id=93472
code.google.com/p/chromium/issues/detail?id=93497
code.google.com/p/chromium/issues/detail?id=93587
code.google.com/p/chromium/issues/detail?id=93596
code.google.com/p/chromium/issues/detail?id=93906
code.google.com/p/chromium/issues/detail?id=94800
code.google.com/p/chromium/issues/detail?id=95563
code.google.com/p/chromium/issues/detail?id=95625
code.google.com/p/chromium/issues/detail?id=95917
code.google.com/p/chromium/issues/detail?id=95920
googlechromereleases.blogspot.com/2011/09/stable-channel-update_16.html
threatpost.com/google-fixes-more-30-flaws-chrome-091611/