Google Updates Chrome for 10 Security Flaws

“Google is updating the stable version of its Chrome Web browser
for Windows, Mac and Linux, addressing a handful of security
vulnerabilities — including four that could put users at risk
simply by viewing a maliciously constructed image file.

“Those vulnerabilities addressed in Chrome 5.0.375.99 are rated
as “high” severity, and include a high-memory corruption flaw that
could be triggered by an invalid PNG image file. Google awarded
security researcher Aki Helin $1,000 for the discovery of the
vulnerability, which he reported June 7.

“However, because the flaw is actually rooted in the open source
libpng program — which is also in use by other Web browsers and
open source applications — Helin later suggested in Google’s
tracking system that the company help mitigate the risk to other
browsers and applications still using a vulnerable version of
libpng by holding off on fixing the vulnerability”

Complete Story