19 vulnerabilities fixed in Google Chrome
On Monday, Google fixed 19 vulnerabilities in Chrome and paid $ 14,000 to nine researchers who reported these vulnerabilities.
Like a year ago, Google fixed vulnerabilities in Chrome a week before the start of Pwn2Own, the annual hacking contest will be held as part of the CanSecWest conference in Vancouver.
In the update, Chrome 9.0.597.107, 16 vulnerabilities were rated "high", second in the rating of Google systems threats, and three "medium" vulnerabilities. No vulnerability has been identified as “critical.”
Vulnerabilities were fixed in several components, including WebGL, hardware accelerated 3D graphics API, which was introduced in early February in Chrome 9, SVG (scalable vector graphics), and browser address bar.
Nearly a quarter of the vulnerabilities have been identified as “outdated error pointers”, a term used to describe problems in an application — in particular in Chrome — a memory allocation code.
')
Pwn2Own 2011 will begin on March 9, when security researchers will compete in hacking not only Chrome but also other popular browsers Apple Safari 5, Microsoft Internet Explorer 8 and Firefox Mozilla 3.6.
Bug fixes on Monday may be particularly important this year because Google announced a prize of $ 20,000 for hacking Chrome within three days from the start of the contest. After that, if no one hacks Chrome, Google will pay only $ 10,000.
UPD: memory allocation code -> memory allocation code
Like a year ago, Google fixed vulnerabilities in Chrome a week before the start of Pwn2Own, the annual hacking contest will be held as part of the CanSecWest conference in Vancouver.
In the update, Chrome 9.0.597.107, 16 vulnerabilities were rated "high", second in the rating of Google systems threats, and three "medium" vulnerabilities. No vulnerability has been identified as “critical.”
Vulnerabilities were fixed in several components, including WebGL, hardware accelerated 3D graphics API, which was introduced in early February in Chrome 9, SVG (scalable vector graphics), and browser address bar.
Nearly a quarter of the vulnerabilities have been identified as “outdated error pointers”, a term used to describe problems in an application — in particular in Chrome — a memory allocation code.
')
Pwn2Own 2011 will begin on March 9, when security researchers will compete in hacking not only Chrome but also other popular browsers Apple Safari 5, Microsoft Internet Explorer 8 and Firefox Mozilla 3.6.
Bug fixes on Monday may be particularly important this year because Google announced a prize of $ 20,000 for hacking Chrome within three days from the start of the contest. After that, if no one hacks Chrome, Google will pay only $ 10,000.
UPD: memory allocation code -> memory allocation code
Source: https://habr.com/ru/post/114717/
All Articles