1
PublicDateAtUSN: 2018-01-23
2
Candidate: CVE-2018-5114
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5114
6
https://www.mozilla.org/en-US/security/advisories/mfsa2018-02/
7
https://usn.ubuntu.com/usn/usn-3544-1
9
If an existing cookie is changed to be "HttpOnly" while a document is open,
10
the original value remains accessible through script until that document is
11
closed. Network requests correctly use the changed HttpOnly cookie. This
12
vulnerability affects Firefox < 58.
18
Assigned-to: chrisccoulson
21
upstream_firefox: released (58.0)
22
precise/esm_firefox: DNE
23
trusty_firefox: released (58.0+build6-0ubuntu0.14.04.1)
24
xenial_firefox: released (58.0+build6-0ubuntu0.16.04.1)
25
artful_firefox: released (58.0+build6-0ubuntu0.17.10.1)
26
bionic_firefox: released (59.0.1+build1-0ubuntu1)
27
devel_firefox: released (59.0.1+build1-0ubuntu1)