Lack of proper state tracking in Permissions in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.Referenceshttps://access.redhat.com/errata/RHSA-2018:2666https://chromereleases.googleblog.com/2018/09/stable-channel-update-for-desktop.htmlhttps://security.gentoo.org/glsa/201811-10https://crbug.com/848535
