1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
|
Candidate: CVE-2015-4483
PublicDate: 2015-08-15
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4483
https://www.mozilla.org/en-US/security/advisories/mfsa2015-86/
https://bugzilla.mozilla.org/show_bug.cgi?id=1148732
http://www.mozilla.org/security/announce/2015/mfsa2015-86.html
Description:
Mozilla Firefox before 40.0 allows man-in-the-middle attackers to bypass a
mixed-content protection mechanism via a feed: URL in a POST request.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to: chrisccoulson
Patches_firefox:
upstream_firefox: released (40)
precise_firefox: released (40.0+build4-0ubuntu0.12.04.4)
trusty_firefox: released (40.0+build4-0ubuntu0.14.04.4)
vivid_firefox: released (40.0+build4-0ubuntu0.15.04.4)
devel_firefox: released (40.0+build4-0ubuntu4)
|