Google engineers claim that Chrome PWN bug is a Flash bug
Summary: Yesterday I reported that security firm VUPEN claimed to have a Google Chrome browser exploit that bypassed the browser's sandbox and Windows ASLR and DEP security measures. Today Google engineers are claiming that the bug isn't with Chrome itself but in the Flash player bundled with the browser.
Yesterday I reported that security firm VUPEN claimed to have a Google Chrome browser exploit that bypassed the browser's sandbox and Windows ASLR and DEP security measures. Today Google engineers are claiming that the bug isn't with Chrome itself but in the Flash player bundled with the browser.
Google security engineer Tavis Ormandy had this to say on Twitter:
"As usual, security journalists don't bother to fact check. VUPEN misunderstood how sandboxing worked in chrome, and only had a flash bug."
Side note: To be fair to security journalists, VUPEN doesn't given them much to go on, and only discloses details of the vulnerability to government organisations and 'paying' customers.
Another Google security engineer, Chris Evans, chimed in with this in a reply to another comment on Twitter:
"It's a legit pwn, but if it requires Flash, it's not a Chrome pwn. Do Java bugs count as a Chrome pwn too, because we support NPAPI?"
VUPEN, while being open to questions, isn't answering questions related to the bug. VUPEN CEO Chaouki Bekrar became involved in the conversation with Google engineers on Twitter.
Judging by his responses, I think that it is fair to say that this is indeed a Flash bug and not Chrome bug.
Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.
Talkback
RE: Google engineers claim that Chrome PWN bug is a Flash bug
Or are they just making excuses?
Again.
Gosh, I have to agree with Loverboy. It may be in Flash, but, Google must
Slip of the tongue ..
.. you mean [i]"Flash to trash can"[/i] techniques .. that's where it belongs.
RE: Google engineers claim that Chrome PWN bug is a Flash bug
Well, if that is the case then .pdf readers should go in the trash can, then word processing applications should go in the trash can, and Linux should go in the trash can..... GET REAL HERE!
Just because something has vulnerabilities does NOT mean that it should automatically be dropped. Doesn't mean that even when the vulnerabilities come out over a period of years.
@Lerianis10 .. Nice try
while clearly on Google's plate
Since they built the heralded sandbox - but still it's another example of why flash should be deemed a parasite and eradicated from the internet
RE: Google engineers claim that Chrome PWN bug is a Flash bug
Too bad there's not a tech company willing to take a stand and keep buggy/laggy/security risky flash off their platform. Wait...
RE: Google engineers claim that Chrome PWN bug is a Flash bug
Flash is no more buggy/laggy/security risky than Javascript and numerous other technologies used on the internet. The biggest problem is that Adobe has to keep backwards compatibility with OLDER versions of Flash, which is where part of the problems are coming from.
RE: Google engineers claim that Chrome PWN bug is a Flash bug
It is pathetic that Google is downplaying this...
Google is a company that steals other people's idea but never admit their own failures. If they held themselves accountable once in a while maybe they'll actually produce a produce that works. Until then I guess it's more lip service from Google.
And yet one of the bloggers here tells us we should blindly trust Google
that they are the death of Microsoft and Apple.
RE: Google engineers claim that Chrome PWN bug is a Flash bug
ZDNet needs to wake up at some point and realize that the trolls outnumber the real posters here; realization is just the first step to cleaning up this mess of a forum, though.
ZDNet needs to add features like comment history and personal blocklists. That might make this place bearable -- at least I could see that the last 20 comments from iPad-awan were total crap devoid of real information, and I could make a decision what to do with that..
That works both ways
And I won't have to read garbage from you and the rest of the fANDROID idiots.
RE: Google engineers claim that Chrome PWN bug is a Flash bug
I agree with iPad-awan, as his comment was very true. Google definitely has blame in this one (hello, failed sandboxing technology).
Anyway, in terms of the comment system, ZDNet can/should implement Disqus (like Engadget), then you can look through peoples previous posts. :P (and also get alerts when you have replies, etc... )
ZDNets forum software is the worst I've ever used.
Every other blog I participate on has forum software which provides these basic features. Whatever ZDNet is using here it's a complete joke.
ZDNet's forums are crap anyway...
RE: Google engineers claim that Chrome PWN bug is a Flash bug
RE: Google engineers claim that Chrome PWN bug is a Flash bug
That said, I also don't think this is the end of the world.
RE: Google engineers claim that Chrome PWN bug is a Flash bug