1
Candidate: CVE-2017-5425
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5425
5
https://www.mozilla.org/en-US/security/advisories/mfsa2017-05/#CVE-2017-5425
7
The Gecko Media Plugin sandbox allows access to local files that match
8
specific regular expressions. On OS OX, this matching allows access to some
9
data in subdirectories of "/private/var" that could expose personal or
10
temporary data. This has been updated to not allow access to "/private/var"
11
and its subdirectories. Note: this issue only affects OS X. Other operating
12
systems are not affected. This vulnerability affects Firefox < 52 and
16
chrisccoulson> OS X only
20
Assigned-to: chrisccoulson
23
upstream_firefox: released (52.0)
24
precise_firefox: not-affected
25
trusty_firefox: not-affected
26
vivid/ubuntu-core_firefox: DNE
27
vivid/stable-phone-overlay_firefox: DNE
28
xenial_firefox: not-affected
29
yakkety_firefox: not-affected
30
devel_firefox: not-affected