chrome is vulnerable to authorization bypass. Insufficient data validation in the SQLite allows a remote attacker to bypass authorization measures via a malicious HTML page.
lists.opensuse.org/opensuse-security-announce/2019-12/msg00032.html
lists.opensuse.org/opensuse-security-announce/2019-12/msg00036.html
access.redhat.com/errata/RHSA-2019:4238
chromereleases.googleblog.com/2019/12/stable-channel-update-for-desktop.html
crbug.com/1025464
lists.fedoraproject.org/archives/list/[email protected]/message/2Z5M4FPUMDNX2LDPHJKN5ZV5GIS2AKNU/
lists.fedoraproject.org/archives/list/[email protected]/message/N5CIQCVS6E3ULJCNU7YJXJPO2BLQZDTK/
seclists.org/bugtraq/2020/Jan/27
security.gentoo.org/glsa/202003-08
usn.ubuntu.com/4298-1/
usn.ubuntu.com/4298-2/
www.debian.org/security/2020/dsa-4606