CVE-2013-0924
The extension functionality in Google Chrome before 26.0.1410.43 does not verify that use of the permissions API is consistent with file permissions, which has unspecified impact and attack vectors.
Date published : 2013-03-28
http://googlechromereleases.blogspot.com/2013/03/stable-channel-update_26.html