We reported about the pitfalls of Google Mail. In the story, we discussed how gmail contact lists can be downloaded by adding a code to user's server and exploiting Google's java script API. The gmail bug posed serious security threat to the users since their contacts are open for the spammers. If Googlified post is to be believed, the gmail bug has been removed by Google just after 30 hours of the problem.
The post comments, "Finally, about an hour ago or so, Google has patched the vulnerability, thoroughly, as far as I can tell. That’s like thirty hours after I notify the Google Security team. It’s new year, people. Well, the bug has been fixed, but I guess some people will still have questions about it.".
Matt Cutts has commented to the post saying, "I believe it is fixed now. The issue was that multiple properties had to incorporate the fix. My guess is that someone will post about it in more detail in a while, but I wanted to stop by and say thanks to Haochi for pointing this out."