Google's newest Chrome update fixes a high-severity vulnerability, whose discovery earned an anonymous researcher a $5,000 bug bounty.
Google's newest Chrome update fixes a high-severity vulnerability, whose discovery earned an anonymous researcher a $5,000 bug bounty.

Google last week announced the impending rollout of Chrome version 53.0.2785.143, which includes three security fixes for the Windows, Mac and Linux operating systems. According to US-CERT, a remote attacker could exploit one of these vulnerabilities in order to take control of an affected system.

According to Google's Chrome Releases blog post page, the latest update addresses a high-severity use-after-free vulnerability – officially designated CVE-2016-5177 – that was found in the open-source V8 JavaScript Engine by an anonymous external researcher who was awarded a $5,000 bug bounty. Google's own internal security audits and fuzz testing also resulted in additional fixes, the company reported.