The internet giant has paid out a total of approximately $90,000 for the flaws patched in the latest version of Chrome, but it has yet to determine the rewards for two of the issues, including a high-severity bug.
The highest bug bounty, $15,000, was earned by an anonymous researcher who discovered a use-after-free vulnerability in the Omnibox component.
Use-after-free vulnerabilities are commonly found in Chrome. These types of flaws can often be exploited to escape the browser’s sandbox, but they are in many cases only useful to attackers when combined with other flaws.
