Critical problem with kernel memory corruption in Windows? Google can fix that for a mere $5,000.
That was the amount paid out as Google upgraded version 22 of their Chrome browser to the stable channel.
Altogether Google paid out a total of $29,500 to security researchers who discovered bugs in their browser. Version 22 of Chrome has fixed more than 40 security issues, 15 of which were classified as high priority vulnerabilities.
Of the almost $30,000 dollars paid out to researchers, more than half of the bounties went to Sergey Glazunov who discovered two particularly severe bugs including a flaw in the way that Google handles frames. The most intriguing award this time around though goes to Eetu Luodemaa and Joni Vahamaki from Documill who found that kernel memory corruption issue I mentioned earlier and for which they share a $5,000 bounty.
For now there are no further details from Google on the bug as they are waiting for the majority of users to receive the relevant software update to deal with it. They did say this though:
“Occasionally, we issue special rewards for bugs outside of Chrome, particularly where the bug is very severe and/or we are able to partially work around the issue”
Google, Chrome Releases
In addition to the 42 security fixes, Chrome version 22 also sees the addition of a few tweaks designed to make better use of Windows 8 and high res monitors as well as improved support for mouse use in browser based games.