Candidate: CVE-2014-8631
PublicDate: 2014-12-11 11:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8631
 https://bugzilla.mozilla.org/show_bug.cgi?id=821573
 http://www.mozilla.org/security/announce/2014/mfsa2014-91.html
Description:
 The Chrome Object Wrapper (COW) implementation in Mozilla Firefox before
 34.0 and SeaMonkey before 2.31 supports native-interface passing, which
 allows remote attackers to bypass intended DOM object restrictions via a
 call to an unspecified method.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to: chrisccoulson
CVSS: 

Patches_firefox:
upstream_firefox: needs-triage
lucid_firefox: ignored (reached end of life)
precise_firefox: released (34.0)
trusty_firefox: released (34.0)
trusty/esm_firefox: DNE (trusty was released [34.0])
utopic_firefox: released (34.0)
devel_firefox: released (34.0)

Patches_thunderbird:
Priority_thunderbird: low
upstream_thunderbird: needs-triage
lucid_thunderbird: ignored (reached end-of-life)
precise_thunderbird: not-affected
trusty_thunderbird: not-affected
trusty/esm_thunderbird: DNE (trusty was not-affected)
utopic_thunderbird: not-affected
devel_thunderbird: not-affected