1
PublicDateAtUSN: 2014-03-18
2
Candidate: CVE-2014-1510
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1510
6
http://www.mozilla.org/security/announce/2014/mfsa2014-29.html
7
https://usn.ubuntu.com/usn/usn-2150-1
8
https://usn.ubuntu.com/usn/usn-2151-1
10
The Web IDL implementation in Mozilla Firefox before 28.0, Firefox ESR 24.x
11
before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 allows
12
remote attackers to execute arbitrary JavaScript code with chrome
13
privileges by using an IDL fragment to trigger a window.open call.
19
Assigned-to: chrisccoulson
22
upstream_firefox: released (28.0)
23
lucid_firefox: ignored (reached end-of-life)
24
precise_firefox: released (28.0+build2-0ubuntu0.12.04.1)
25
quantal_firefox: released (28.0+build2-0ubuntu0.12.10.1)
26
saucy_firefox: released (28.0+build2-0ubuntu0.13.10.1)
27
devel_firefox: released (28.0+build2-0ubuntu1)
30
Priority_thunderbird: low
31
upstream_thunderbird: released (24.4.0)
32
lucid_thunderbird: ignored (reached end-of-life)
33
precise_thunderbird: released (1:24.4.0+build1-0ubuntu0.12.04.1)
34
quantal_thunderbird: released (1:24.4.0+build1-0ubuntu0.12.10.1)
35
saucy_thunderbird: released (1:24.4.0+build1-0ubuntu0.13.10.2)
36
devel_thunderbird: released (1:24.4.0+build1-0ubuntu1)