~ubuntu-security/ubuntu-cve-tracker/master : contents of retired/CVE-2015-4483 at revision 13266

~ubuntu-security/ubuntu-cve-tracker/master : (revision 13266)

browse files
view with revision information
view revision
view changes to this file
download file

Candidate: CVE-2015-4483
PublicDate: 2015-08-15
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4483
 https://www.mozilla.org/en-US/security/advisories/mfsa2015-86/
 https://bugzilla.mozilla.org/show_bug.cgi?id=1148732
 http://www.mozilla.org/security/announce/2015/mfsa2015-86.html
Description:
 Mozilla Firefox before 40.0 allows man-in-the-middle attackers to bypass a
 mixed-content protection mechanism via a feed: URL in a POST request.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to: chrisccoulson

Patches_firefox:
upstream_firefox: released (40)
precise_firefox: released (40.0+build4-0ubuntu0.12.04.4)
trusty_firefox: released (40.0+build4-0ubuntu0.14.04.4)
vivid_firefox: released (40.0+build4-0ubuntu0.15.04.4)
devel_firefox: released (40.0+build4-0ubuntu4)