Google accidentally exposed details of unfixed Chromium flaw
… The flaw was reported by security researcher Lyra Rebane and acknowledged as valid in December 2022, as per the thread on Chromium Issue Tracker. An attacker could exploit the problem to create a malicious webpage with a Service Worker, such as a download task, that never terminates. …