Use after free in Spell check in Google Chrome prior to 91.0.4472.101 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
https://security.gentoo.org/glsa/202107-06
https://chromereleases.googleblog.com/2021/06/stable-channel-update-for-desktop.html