This template is ONLY for reporting security bugs. If you are reporting a
Download Protection Bypass bug, please use the "Security - Download
Protection" template. For all other reports, please use a different
template.

Please see the following link for instructions on filing security bugs:
http://www.chromium.org/Home/chromium-security/reporting-security-bugs

NOTE: Security bugs are normally made public once a fix has been widely
deployed.

VULNERABILITY DETAILS
My fortinet firewall is picking many XSS filter bypass alerts.  
Here is the alert message.
Message meets Alert condition
The following intrusion was observed: "Google.Chrome.XSSAuditor.Filter.Security.Bypass".
date=2016-07-13 time=12:47:41 devname=FGT80C3909630340 devid=FGT80C3909630340 logid=0419016384 type=ips subtype=signature level=alert severity=medium srcip=52.84.37.46 dstip=10.1.10.103 srcintf="wan1" dstintf="internal" policyid=1 identidx=0 sessionid=21950618 status=dropped proto=6 service=51336/tcp count=1 attackname="Google.Chrome.XSSAuditor.Filter.Security.Bypass" srcport=80 dstport=51336 attackid=37926 sensor="default" ref="http://www.fortinet.com/ids/VID37926" incidentserialno=413496782 msg="applications3: Google.Chrome.XSSAuditor.Filter.Security.Bypass,"


Chrome Version: 51.0.2704.103
Operating System: [Please indicate OS, version, and service pack level]

REPRODUCTION CASE
Please include a demonstration of the security bug, such as an attached
HTML or binary file that reproduces the bug when loaded in Chrome. PLEASE
make the file as small as possible and remove any content not required to
demonstrate the bug.

FOR CRASHES, PLEASE INCLUDE THE FOLLOWING ADDITIONAL INFORMATION
Type of crash: [tab, browser, etc.]
Crash State: [see link above: stack trace, registers, exception record]
Client ID (if relevant): [see link above]