Google issues quick fix for $60k Pwnium Chrome bug

Google has updated its Chrome browser, fixing an issue that was first uncovered at its Pwnium browser hacking contest, which is taking place at the CanSecWest security conference in Vancouver this week.

Russian security researcher Sergey Glazunov won $60,000 for demonstrating his exploit, which was able to bypass Chrome's sandbox, at the hackathon.

Under the rules of the competition, Glazunoy was able to claim the prize for demonstrating a full Chrome exploit on a fully-patched system.

“Congratulations again to community member Sergey Glazunov for the first submission to Pwnium,” wrote Jason Kersey of Google's Chrome team in a blog detailing the security update.

But Glazunoy is not the only hacker that has defeated Chrome's feted security features.

Entrants to Pwn2Own competition, which is running in parallel with the Pwnium one, have also demonstrated full Chrome exploits.

Google had withdrawn its sponsorship for Pwn2Own and set up the rival competition after realising it wouldn't get the full details on some of the exploits being shown off at Pwn2Own.

The VuPen security team were able to defeat Chrome within five minutes of the competition starting but Google will not be able to patch the browser until it confirms how the exploit worked.

Meanwhile, the latest Chrome update also fixes issues with some Flash games and videos.