Thread: Google patches Chrome for a few days before the competition Pwn2Own

Just like Apple, Google has "reinforced security" to their browser just days before the competition Pwn2Own occurred in Canada.


Chrome update 4.1.249.1036 edit six errors were evaluated with dangerous levels "high" (the second serious ranking system level 4 threat of Google), 3 errors at risk "medium" and 2 errors at risk "low".Danish company Secunia assessment update as "highly critical".
Although Google often hides technical details of the most serious flaw when making updates (to prevent hackers using information), all errors are 11 and this "is in the rear wall "." The reference error can be kept confidential until the majority of our users to update patches, today April 17, 2010, he Orit Mazor, director of technical Chrome team said.

A bug in the open source WebKit browser engine (used in both Chrome and Safari), have brought about the researcher Sergey Glazunov checks worth $ 1337 dollars . This is the maximum amount that Google paid to vulnerabilities in bonus money program feedback they announced in January 2010.Most people find the flaw only earn 500 USD (~ 9.43 million), but the error "particularly serious or particularly smart" will be rewarded with 1337 USD.

The other flaw is noted for: Mark Dowd (researchers working under contract for Google); Robert "RSnake" Hansen (CEO of SecTheory) Aki Helin's OUSPG University Oulu .In all, Google has to pay 3337 USD for this patch this.

Only the Windows version of Chrome on the patch. Google has added some features to Chrome security not 4.1.249.1036.