Google has patched a vulnerability exploited by researchers at last week's Pwn2Own hacking contest.
Even though Google Chrome was not hacked during the competition, the bug resided in WebKit - the rendering engine used by the browser.
WebKit is also featured in Apple's Safari and the browser found on BlackBerry phones.
A team of researchers, including Willem Pinckaers, Vincenzo Iozzo and Ralf-Philipp Weinmann, hacked a BlackBerry Torch 9800 by exploiting the vulnerability.
On top of the $15,000 (9,345) they received for the BlackBerry hack, the researchers were handed $1,337 from Google.
The update, in Google Chrome 10.0.648.133, only fixed the WebKit security issue.
The memory corruption bug was given a high priority ranking, but Google was not forthcoming on any additional details.
"Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix," said Jason Kersey, from the Google Chrome team.
Google has handed out over $100,000 as part of its Chromium Security Rewards programme.
Politically motivated attacks
Meanwhile, Google warned a vulnerability affecting Internet Explorer (IE) users had been exploited in politically motivated attacks.
Google said its users had been targeted, but gave no further details on who the affected parties were. The tech giant said visitors to "another popular social site" had been targeted as well.
The bug in MIME HTML (MHTML) a protocol used by applications to render certain kinds of documents and bring together different content onto one HTML file - was publicly disclosed back in January.
When Microsoft offered a workaround for the zero-day vulnerability, no exploits had been seen in the wild.
"The abuse of this vulnerability is also interesting because it represents a new quality in the exploitation of web-level vulnerabilities," the Google Security Team said in a blog.
"To date, similar attacks focused on directly compromising users' systems, as opposed to leveraging vulnerabilities to interact with web services."
-
Google rolls out patch for high-severity Chrome browser zero dayNews It's the eighth time this year Google has been forced to address a zero-day vulnerability in its world-leading browser
-
Google Chrome branded the least effective browser for stopping phishing attacksNews The world's most popular browser came dead last when compared against competitors
-
Windows devices targeted by PuzzleMaker malware exploiting Chrome zero-day flawNews Chain of vulnerabilities used to attack multiple companies worldwide
-
Malware found on popular Facebook, Instagram and Vimeo browser extensionsNews Chrome and Edge extensions laced with malware have already been installed three million times
-
Google sets a date for Chrome extension privacy revamp
News From January 18th, developers must be clear about how they're handling user data
-
Google looks to replace third-party cookies in two yearsNews The online advertising market needs to shift to tracking methods that offer some user privacy, admits Google
-
Chrome continues HTTP phase-out by removing 'secure' icon from HTTPS sitesNews Changes in 'secure' and 'non secure' icons comprise final steps in plan to make web secure-by-default
-
Hack on popular Chrome plugin spams ads to one million usersNews The author says a phishing scam led to the theft of admin credentials
