An use after free flaw was found in the Flash component of the Chromium browser. Upstream bug(s): https://code.google.com/p/chromium/issues/detail?id=758863 External References: https://chromereleases.googleblog.com/2018/03/stable-channel-update-for-desktop.html
Created chromium tracking bugs for this issue: Affects: fedora-all [bug 1552502] Affects: epel-7 [bug 1552504]
The Google blog post referenced in comment 0 was updated and no longer mentions this CVE. It now lists different CVE for this issue instead: [$5000][758863] High CVE-2017-11225: Use after free in Flash. Reported by JieZeng of Tencent Zhanlu Lab on 2017-08-25 The CVE-2017-11225 is for Adobe Flash Player and it was previously covered by Adobe Security Bulletin APSB17-33, released on Nov14, 2017: https://helpx.adobe.com/security/products/flash-player/apsb17-33.html Note that the chromium-browser packages as shipped in Red Hat Enterprise Linux 6 Supplementary do not bundle Adobe Flash Player and can not be affected by any Flash issues.