Google patched 30 vulnerabilities in Chrome today, paying out the third-highest bounty total ever for the bugs that outsiders filed with its security team.
The company packaged the patches with an update to Chrome 13, officially adding Instant Pages – the feature that proactively pre-loads some search results to speed up browsing.
Fourteen of the 30 vulnerabilities patched today were rated “high,” the second-most-serious ranking in Google’s four-step scoring system, while nine were pegged “medium” and the remaining seven were labeled “low.”
Google paid out $16,000 in bounties to 10 researchers who reported 17 of the vulnerabilities patched today, including $7,500 to a researcher identified as “miaubiz,” and $2,000 to another frequent contributor, Sergey Glazunov.
Since Jan. 1, miaubiz has earned $22,500 in Chrome bounties.
Today’s total was Chrome’s third-largest, and almost matched the record of $16,500 set in April. So far this year, Google has paid out more than $110,000 to researchers.
Chrome 13 also includes print preview for Windows and Linux users — the feature remains in testing on the Mac, but is available in the beta and dev channels of Chrome 14 for that OS — and improvements to the “omnibox,” the term Google uses for the combo address-search bar.
Chrome 13 can be downloaded for Windows, Mac OS X and Linux from Google’s Web site. Users already running the browser will be updated automatically.
[via Computerworld]
Add comment