1
PublicDateAtUSN: 2017-01-25
2
Candidate: CVE-2017-5391
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5391
6
https://www.mozilla.org/en-US/security/advisories/mfsa2017-01/#CVE-2017-5391
7
https://usn.ubuntu.com/usn/usn-3175-1
9
Special "about:" pages used by web content, such as RSS feeds, can load
10
privileged "about:" pages in an iframe. If a content-injection bug were
11
found in one of those pages this could allow for potential privilege
12
escalation. This vulnerability affects Firefox < 51.
17
Discovered-by: Jerri Rice
18
Assigned-to: chrisccoulson
21
upstream_firefox: released (51)
22
precise_firefox: released (51.0.1+build2-0ubuntu0.12.04.1)
23
trusty_firefox: released (51.0.1+build2-0ubuntu0.14.04.1)
24
vivid/ubuntu-core_firefox: DNE
25
vivid/stable-phone-overlay_firefox: DNE
26
xenial_firefox: released (51.0.1+build2-0ubuntu0.16.04.1)
27
yakkety_firefox: released (51.0.1+build2-0ubuntu0.16.10.1)
28
zesty_firefox: released (52.0.1+build2-0ubuntu1)
29
devel_firefox: not-affected (51.0.1+build2-0ubuntu1)
32
Priority_thunderbird: low
33
upstream_thunderbird: not-affected
34
precise_thunderbird: not-affected
35
trusty_thunderbird: not-affected
36
vivid/ubuntu-core_thunderbird: DNE
37
vivid/stable-phone-overlay_thunderbird: DNE
38
xenial_thunderbird: not-affected
39
yakkety_thunderbird: not-affected
40
zesty_thunderbird: not-affected
41
devel_thunderbird: not-affected