ie8 fix
madison

Zero Day

Ryan Naraine, Emil Protalinski and Dancho Danchev
Home / News & Blogs / Zero Day

With Pwn2Own looming, Mozilla and Google ship browser patches

By | March 4, 2011, 2:08pm PST

Summary: Less than a week before the annual CanSecWest Pwn2Own hacker challenge, two major browser vendors have shipped major updates to fix gaping security holes.

Less than a week before the annual CanSecWest Pwn2Own hacker challenge, two major browser vendors have shipped major updates to fix gaping security holes.

The latest updates from Mozilla Firefox and Google Chrome covers flaws that could lead to remote code execution attacks, according to separate advisories issued this week.

The release of the patches — Firefox 3.6.14 and Google Chrome 9.0.597.107 (all platforms) — is quite possibly not linked to the Pwn2Own contest, which encourages security researchers to hack into the major browsers but it is typical for software vendors to issue monster patches just ahead of the challenge every year.

This year’s contest includes an actual challenge by Google for hackers to attempt to break out of the Chrome sandbox.  Google is putting up a $20,000 cash prize for any hacker who can successfully compromise a Windows 7 machine via a vulnerability — and sandbox escape — in Chrome.follow Ryan Naraine on twitter

Earlier this week, Google shipped a major security makeover that included $14,000 is cash payments to bug finders.  This mega-patch covered a total of 18 security holes, most rated “high-risk.”    Google said it has paid in excess of $100,000 to researchers as part of its bug bounty program.

Separately, Mozilla shipped a new Firefox version to fix the following:

  • MFSA 2011-10 CSRF risk with plugins and 307 redirects
  • MFSA 2011-09 Crash caused by corrupted JPEG image
  • MFSA 2011-08 ParanoidFragmentSink allows javascript: URLs in chrome documents
  • MFSA 2011-07 Memory corruption during text run construction (Windows)
  • MFSA 2011-06 Use-after-free error using Web Workers
  • MFSA 2011-05 Buffer overflow in JavaScript atom map
  • MFSA 2011-04 Buffer overflow in JavaScript upvarMap
  • MFSA 2011-03 Use-after-free error in JSON.stringify
  • MFSA 2011-02 Recursive eval call causes confirm dialogs to evaluate to true
  • MFSA 2011-01 Miscellaneous memory safety hazards (rv:1.9.2.14/ 1.9.1.17)

Eight of the 10 Mozilla issues are rated “critical,” meaning they can be exploited to run attacker code and install software, requiring no user interaction beyond normal browsing.\

Firefox and Chrome both have automatic update mechanisms to deploy these patches.

If history holds true, look for Apple to ship a bumper Safari patch early next week.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “Zero Day”

Topics

Google Inc., Patch Management, Web Browser, Mozilla Corp., Patches, Web Browsers, Security, Internet, Ryan Naraine

Ryan Naraine is a journalist and social media enthusiast specializing in Internet and computer security issues.

Disclosure

Ryan Naraine

The most important disclosure is of my employment with Kaspersky Lab as a member of the global research and analysis team. Kaspersky Lab is a global company specializing in anti-malware and secure content management technologies. I do not own stocks or other investments in any technology company.

Biography

Ryan Naraine

Ryan Naraine is a journalist and social media enthusiast specializing in Internet and computer security issues. He is currently security evangelist at Kaspersky Lab, an anti-malware company with operations around the globe. He is taking a leadership role in developing the company's online community initiative around secure content management technologies.

Prior to joining Kaspersky Lab, Ryan was Editor-at-Large/Security at eWEEK, leading the magazine's and Web site's coverage of Internet and computer security issues and managing the popular SecurityWatch blog, covering the daily threats, vulnerabilities and IT security technologies. He also covered IT security, hacker attacks and secure content management topics for Jupiter Media's internetnetnews.com.

Ryan can be reached at naraine SHIFT 2 gmail.com. For daily updates on Ryan's activities, follow him on Twitter.

Related Discussions on TechRepublic

Did you know you can take part in these discussions with your ZDNet membership?
Ask a Question Start a Discussion
15
Comments
Add Your Opinion

Join the conversation!

Just In

What the hell was that deleted for?
LTV10 7th Mar 2011
Charlie Miller talking nonsense?

In response to a question about Linux, Miller commented that Linux is 'no harder', and 'probably easier' to hack than Windows or Mac OS, but that the organisers of Pwn2Own don't include it because hardly anyone uses it on the desktop.

That is just plain false. They couldn't "hack" it because they don't know how to. If Miller says it's "probably easier" to hack than windoze, then why hasn't he done it yet? Why isn't he the first in the history books to do so?

Because he can't, that's why.

Is zdnet afraid of the truth here or what...
View in thread
0 Votes
+ -
So they did only because of Pwn2Own
Will Farrell 4th Mar 2011
and not because they care about end user.

I'll go with that with Google, not Mozilla. for Mozilla it was just timing, with Google my guess is that Pwn2Own forced them to.
0 Votes
+ -
subjective much?
UrNotPayingAttention 7th Mar 2011
@Will Farrell
0 Votes
+ -
RE: With Pwn2Own looming, Mozilla and Google ship browser patches
Chiatzu 4th Mar 2011
Mozilla Firefox is out with 3.6.15 as I type.
0 Votes
+ -
RE: With Pwn2Own looming, Mozilla and Google ship browser patches
MoeFugger 4th Mar 2011
@Chiatzu
Yep that is what it installed here.
3.6.15
0 Votes
+ -
So lets start having Pwn2Own on a monthly basis
Johnny Vegas 4th Mar 2011
will IE9 RC be included?
0 Votes
+ -
RE: With Pwn2Own looming, Mozilla and Google ship browser patches
alsobannedfromzdnet Updated - 4th Mar 2011
Apple probably slipped a few through via the recent iTunes update.

It all hinges on whether they've covered the holes that have been worked on for months, prior to the event.

Can you use pdf's in this pwn2own thing or would that make it too easy?
0 Votes
+ -
from what i understand...
UrNotPayingAttention 7th Mar 2011
@alsobannedfromzdnet

no .pdf's, no .swf, etc., on the first day. browser only.

on the second day, it opens up to add-ins. of course, the reward dwindles as well.
0 Votes
+ -
RE: With Pwn2Own looming, Mozilla and Google ship browser patches
iluvmsft 4th Mar 2011
Microsoft feels confident with IE9 or IE8 that they did not released an update before pwn2own?
0 Votes
+ -
Not likely
wackoae 4th Mar 2011
@iluvmsft It is more probable that MS figure the brand new attempt to catchup with the rest is not good enough and they don't want the version tarnished just before it is officially released.

Given MS's history on pwn2own I honestly doubt it would make any difference anyway.
0 Votes
+ -
Agreed. The fact that others are easily hacked before Microsoft
Mister Spock 5th Mar 2011
@wackoae
It makes sense not to worry.
plain
0 Votes
+ -
RE: With Pwn2Own looming, Mozilla and Google ship browser patches
WilErz 5th Mar 2011
@iluvmsft

I doubt IE9 RC has a high enough market share to meet the bar for inclusion in Pwn2Own. I suppose there's still time for an IE8 update, but Microsoft may not be all that interested in focusing on it, since IE9 is on the way, and has so many code changes.

Before last year's Pwn2Own, Charlie Miller gave his opinion that Chrome and IE8 are probably the most secure browsers anyway. However, he also said that the differences between browsers are too small to get worked up about, and that the real key to a secure browser is to not install Flash.

In response to a question about Linux, Miller commented that Linux is 'no harder', and 'probably easier' to hack than Windows or Mac OS, but that the organisers of Pwn2Own don't include it because hardly anyone uses it on the desktop. Opera is excluded for the same reason.

http://www.oneitsecurity.it/01/03/2010/interview-with-charlie-miller-pwn2own/
0 Votes
+ -
Message has been deleted.
LTV10 Updated - 7th Mar 2011
  • Flagged
0 Votes
+ -
What the hell was that deleted for?
LTV10 7th Mar 2011
Charlie Miller talking nonsense?

In response to a question about Linux, Miller commented that Linux is 'no harder', and 'probably easier' to hack than Windows or Mac OS, but that the organisers of Pwn2Own don't include it because hardly anyone uses it on the desktop.

That is just plain false. They couldn't "hack" it because they don't know how to. If Miller says it's "probably easier" to hack than windoze, then why hasn't he done it yet? Why isn't he the first in the history books to do so?

Because he can't, that's why.

Is zdnet afraid of the truth here or what...
0 Votes
+ -
RE: With Pwn2Own looming, Mozilla and Google ship browser patches
Peter Perry 5th Mar 2011
Apparently they were tired of losing to microsoft! Look at the bright side though, everybody beat Apple! :-D
0 Votes
+ -
There is no consolation in that
Mister Spock 5th Mar 2011
@Peter Perry
It is much like an NBA player having a freethrow match against a three year old.
There is no challenge in that, so there is really no satisfaction in winning.
plain

Join the conversation!

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
ie8 fix
Click Here
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources
ie8 fix
ie8 fix