An use after free flaw was found in the WebXR component of the Chromium browser. Upstream bug(s): https://code.google.com/p/chromium/issues/detail?id=1123522 External References: https://chromereleases.googleblog.com/2020/10/stable-channel-update-for-desktop.html
Created chromium tracking bugs for this issue: Affects: epel-all [bug 1885917] Affects: fedora-all [bug 1885916]
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Supplementary Via RHSA-2020:4235 https://access.redhat.com/errata/RHSA-2020:4235
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2020-15976
Note that the additional info included in the CVE description, but not included on the Chrome announcement page, indicates that this only affected Google Chrome on Android.