Google Releases Chrome 10.0.648.133
Google has released an update to Chrome 10.0.648.133 after the Pwn2Own contest. This is a patch for the WebKit vulnerability which was exploited in other takedowns during the event including Safari. Google has been very proactive during Pwn2Own releasing 3 updates in total. From a contest standpoint it is a success for HP. Keep in mind that workable exploits are really the goal, it takes months to develop them and the systems are in default install state.
The update addresses this CVE:
- [$1337] CVE-2011-1290 [75712] High Memory corruption in style handling. Credit to Vincenzo Iozzo, Ralf Philipp Weinmann and Willem Pinckaers reported through ZDI.