Insufficient policy enforcement in Catalog Service in Google Chrome prior to 64.0.3282.119 allowed a remote attacker to potentially run arbitrary code outside sandbox via a crafted HTML page.
Created chromium tracking bugs for this issue:
Affects: epel-7 [bug 1633395]
Affects: fedora-all [bug 1633394]
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):