Adam Varsan

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 52.0.2743.82 **Description** The issue is related to the implementation of the Chrome Web Store inline-installation in the Extensions subsystem, which does not properly consider object lifetimes during progress observation. This allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via a crafted web site. **Recommendations** For versions prior to 52.0.2743.82, update to version 52.0.2743.82 or later to resolve the issue. As a temporary workaround, consider restricting access to the Chrome Web Store or disabling the inline-installation feature until a patch is applied. Avoid using the `Extensions` subsystem in Google Chrome until the issue is resolved.