“Google March 24 paid out $8,500 for six Chrome Web browser
flaws found by enterprising developers. The company also issued two
new SSL certificates to protect against the Comodo certificate
“The holes include a buffer error in base string handling, for
which Google paid $500; use-after-free in the frame loader, which
earned the finder $1,000; and a use-after-free in HTML Collection
that netted the discovery $2,000.
“A stale pointer hole in CSS handling cost Google $1,500.
Another stale pointer, albeit in SVG text handling, earned the
finder $1,500. Lastly, Google made a $2,000 payout for a DOM tree
corruption with broken node parentage. “