FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
57.0,1 <= firefox < 57.0.1,1
firefox < 56.0.2_11,1
waterfox < 56.0.s20171130
linux-seamonkey < 2.49.2
seamonkey < 2.49.2
firefox-esr < 52.5.1,1
linux-firefox < 52.5.1,2

Details

VuXML ID b7e23050-2d5d-4e61-9b48-62e89db222ca
Discovery 2017-11-29
Entry 2017-12-05

Mozilla Foundation reports:

CVE-2017-7843: Web worker in Private Browsing mode can write IndexedDB data

CVE-2017-7844: Visited history information leak through SVG image

References

CVE Name CVE-2017-7843
CVE Name CVE-2017-7844
URL https://www.mozilla.org/security/advisories/mfsa2017-27/