The browser connects to SSL servers using certificates signed with MD2 or MD4 hashing algorithms. This can be exploited by attacker to fake valid certificates if an MD2 or MD4 collision attack is successful.
The V8 issues was identified by Christian Holler, and was rewarded $1000 for finding the error under Google’s Chromium Security reward scheme.
The Chrome 15.0.874.121 also brings in a fix which an SVG element placed within an iframe would not have a specified dimension even after having the width and height assigned. The SVG elements would instead take the maximum amount of space in the iframe. The following links demonstrates the issue
More details on this issue can be found here.
Google Chrome’s earlier release – Chrome 15.0.874.102 had over 27 fixes and rewards accounted to USD $26k. The release also included new features in Chrome 15, such as the redesigned New Tab page. If you ever encounter a problem or want to report a bug related to Google Chrome, then you can fill up this form notify the Google Chrome team.
Download the latest stable release: