Feeds

Google knits 11 patches into Chrome browser

Stable version gets Boba Fett treatment

Secure remote control for conventional and virtual desktops

Google applied patches to three critical and eight high risk vulns in a new iteration of its Chrome browser released late last week.

As is standard practice at Mountain View, the company kept its reference bugs private while its users update Chrome with the fixes.

"Aside from the listed security bugs fixed in Chromium, we have also deployed a workaround for a critical vulnerability where the root cause lies in an external component," noted Google in a blog post.

It ponied up $1,337 to Marc Schoenefeld for coming up with a workaround to a Windows kernel bug.

Two other nasty vulns that were patched in the 5.0.375.127 stable channel release were also merited to Chrome bug bounty hunters, each of whom received payouts from Google for their efforts.

Sergey Glazunov is currently the Boba Fett of the Chrome security world. He has so far amassed $8,011 in Google's so-called "e-leet" scheme, according to CNet.

The company is yet to reward any individual with its biggest single payment of $3,133.70 for a severe Chrome vuln. ®

Choosing a cloud hosting partner with confidence

More from The Register

next story
Download alert: Nearly ALL top 100 Android, iOS paid apps hacked
Attack of the Clones? Yeah, but much, much scarier – report
NSA SOURCE CODE LEAK: Information slurp tools to appear online
Now you can run your own intelligence agency
Microsoft: Your Linux Docker containers are now OURS to command
New tool lets admins wrangle Linux apps from Windows
Soz, web devs: Google snatches its Wallet off the table
Killing off web service in 3 months... but app-happy bonkers are fine
First in line to order a Nexus 6? AT&T has a BRICK for you
Black Screen of Death plagues early Google-mobe batch
Whistling Google: PLEASE! Brussels can only hurt Europe, not us
And Commish is VERY pro-Google. Why should we worry?
prev story

Whitepapers

Seattle children’s accelerates Citrix login times by 500% with cross-tier insight
Seattle Children’s is a leading research hospital with a large and growing Citrix XenDesktop deployment. See how they used ExtraHop to accelerate launch times.
Why CIOs should rethink endpoint data protection in the age of mobility
Assessing trends in data protection, specifically with respect to mobile devices, BYOD, and remote employees.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Protecting against web application threats using SSL
SSL encryption can protect server‐to‐server communications, client devices, cloud resources, and other endpoints in order to help prevent the risk of data loss and losing customer trust.