Google has fixed more than a dozen security bugs in its Chrome browser, including five high-severity vulnerabilities and one that qualified for the company’s highest bug bounty, a $3133.7 reward.
The new version of Chrome has fixes for 15 separate security vulnerabilities, the most critical of which is a same origin bypass in v8, the JavaScript engine in Chrome. That bug, along with several others fixed in this release, was discovered and reported by researcher Sergey Glazunov. The v8 vulnerability earned him a payout of $3133.7 under Google’s reward program, and Glazunov also reported two other bugs, each of which qualified for $1,000 rewards.
The new version of Chrome also gives users the ability to delete Flash cookies in the same manner in which they are able to delete other Web cookies. It also has new functionality that helps prevent the download of malicious files through the Safe Browsing feature.
Google’s Chrome team said that the bug in the v8 engine that Glazunov reported was particularly interesting.
“We’d
also like to call particular attention to Sergey Glazunov’s $3133.7
reward. Although the linked bug is not of critical severity, it was
accompanied by a beautiful chain of lesser severity bugs which
demonstrated critical impact. It deserves a more detailed write-up at a
later date,” Google’s Jason Kersey said in a blog post.
The full list of vulnerabilities fixed in Chrome 12.0.742.91 includes:
code.google.com/p/chromium/issues/detail?id=73962
code.google.com/p/chromium/issues/detail?id=75496
code.google.com/p/chromium/issues/detail?id=75643
code.google.com/p/chromium/issues/detail?id=76034
code.google.com/p/chromium/issues/detail?id=77026
code.google.com/p/chromium/issues/detail?id=78516
code.google.com/p/chromium/issues/detail?id=79362
code.google.com/p/chromium/issues/detail?id=79746
code.google.com/p/chromium/issues/detail?id=79862
code.google.com/p/chromium/issues/detail?id=80358
code.google.com/p/chromium/issues/detail?id=81916
code.google.com/p/chromium/issues/detail?id=81949
code.google.com/p/chromium/issues/detail?id=83010
code.google.com/p/chromium/issues/detail?id=83275
code.google.com/p/chromium/issues/detail?id=83743
googlechromereleases.blogspot.com/2011/06/chrome-stable-release.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+GoogleChromeReleases+%28Google+Chrome+Releases%29
threatpost.com/google-fixes-15-bugs-chrome-gives-users-ability-delete-flash-cookies-060711/