Google awards $15K to Apple security team for finding bug in Chrome

Google has awarded $15,000 as bug bounty to Apple for recognizing a high-severity security vulnerability in the Chrome internet browser.

Apple’s Security Engineering and Architecture team discovered the bug and reported to Google for discovery and disclosure, stories Forbes.

Google disclosed in its newest Chrome replace, confirming 11 security fixes on account of exterior contributor vulnerability stories.

Apple’s SEAR team is tasked with offering the inspiration for working system security throughout all product strains on the tech big.

“If they occur to come throughout one thing that relates to a third-party product as a part of this ongoing security course of, then a accountable disclosure will likely be made,” in accordance to the report.

The ‘CVE-2023-4072’ vulnerability is an “out of bounds learn and write” bug inside Chrome’s WebGL implementation.

WebGL is the JavaScript utility programming interface that allows the rendering of interactive graphics inside the browser and with none plug-ins being required.

In complete, Google awarded bounties value $123,000 for vulnerabilities as a part of its bug bounty programme, in accordance to the report.

The firm mentioned that the Stable Chrome channel has been up to date to 115.0.5790.170 for Mac and Linux and 115.0.5790.170/.171 for Windows, which can roll out over the approaching days/weeks.

“Access to bug particulars and hyperlinks could also be saved restricted till a majority of customers are up to date with a repair. We may also retain restrictions if the bug exists in a 3rd social gathering library that different initiatives equally depend upon, however have not but fastened,” mentioned Google.

(With inputs from IANS)