Slashdot Mirror

← Back to Stories (view on slashdot.org)

Google Releases Chrome 6, Pays $4337 In Bounties

Posted by timothy on from the working-in-the-background dept.

Trailrunner7 writes "Google has released a new version of its Chrome browser and has included more than a dozen security fixes in the update. The new version, 6.0.472.53, was released two years to the day after the company pushed out the first version of Chrome. Google Chrome 6 includes patches for 14 total security vulnerabilities, including six high-priority flaws, and the company paid out a total of $4,337 in bug bounties to researchers who reported the vulnerabilities. A number of the flaws that didn't qualify for bug bounties were discovered by members of Google's internal security team." (Read on for more, below.) Also on the Chrome front, morsch writes "Chrome 7 for Linux is planned to tie in with the Gnome Keyring and the KDE Wallet to securely store saved browser passwords. Users of the stable version of Google's Webkit-based browser might be surprised to find out that, so far, passwords are stored on the hard disk as clear text. On Windows, Chrome has always used a platform-specific crypto API call for encrypted storage. The corresponding Linux function was never implemented — until now. Unstable versions of Chrome 7 still disable the feature by default; it can be enabled using a parameter."

10 of 177 comments (clear)

  1. Crazy Article by bipbop · · Score: 4, Funny

    I just looked at the article briefly, and it states "A second high-priority flaw, a sandbox parameter deserialization error, was discovered by two members of Adobe's Reader Sandbox Team." What the--Adobe has a security team? That's crazy talk!

    1. Re:Crazy Article by TooMuchToDo · · Score: 4, Funny

      Notice that they're too busy working on finding holes in Chrome to be working on Adobe products ;)

      I kid!

  2. "paid out a total of $4,337 in bug bounties" by Snufu · · Score: 1, Funny

    How does this goggle company plan to stay solvent throwing money around like this? Don't they know we are in a recession?

  3. Re:Version bloat by ksandom · · Score: 3, Funny

    In 2015.... Chrome 256 released!

    --
    Funnyhacks - Wierd, unusual, and fun hacks
  4. Aeet? by Anonymous Coward · · Score: 5, Funny

    First thing I thought when I saw 4337 was "What the fuck is Aeet?"

  5. Feel Save AND Fresh by Anonymous Coward · · Score: 2, Funny

    You're on Linux, the most trusted, secured and freshest OS in the universe !!

    Why do you care if Google leaves your creds in the clear? If someone can read them, you are already OWNED !!

    Yours,
    Shirley, the one and only Summer's Eve girl

  6. Re:Version bloat by dougisfunny · · Score: 4, Funny

    They figure once they get to 6 they can coast for years.

    --
    This is not the funny you're looking for.
  7. Re:Yep. My practices are justified. by Anonymous Coward · · Score: 1, Funny

    You could also use Keepass.

    Really bad name for a program meant to keep something.

  8. Re:$4,337 from a multi-billion dollar company? by sco08y · · Score: 4, Funny

    The highest bug bounty, $1337

    $1337? Oh come on!

    Well, $5318008 was a bit much.

  9. Re:Print Preview? by delinear · · Score: 2, Funny

    Maybe his time is important and he's planning on paying out a bounty to anyone who can deliver the information to him.