CVE-2014-1505

Priority
Description
The SVG filter implementation in Mozilla Firefox before 28.0, Firefox ESR
24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 allows
remote attackers to obtain sensitive displacement-correlation information,
and possibly bypass the Same Origin Policy and read text from a different
domain, via a timing attack involving feDisplacementMap elements, a related
issue to CVE-2013-1693.
Assigned-to
chrisccoulson
Notes
Package
Upstream:released (28.0)
Package
Priority: Low
Upstream:released (24.4.0)
More Information

Updated: 2020-09-10 02:56:17 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)