CVE-2015-7197 (retired)

Priority
Description
Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 improperly
control the ability of a web worker to create a WebSocket object, which
allows remote attackers to bypass intended mixed-content restrictions via
crafted JavaScript code.
Assigned-to
chrisccoulson
Package
Upstream:released (42.0)
Ubuntu 16.04 LTS (Xenial Xerus):released (42.0+build2-0ubuntu1)
Package
Priority: Low
Upstream:released (38.4.0)
Ubuntu 16.04 LTS (Xenial Xerus):released (1:38.4.0+build3-0ubuntu1)
More Information

Updated: 2019-08-23 09:07:41 UTC (commit 436fd4ed4cf0038ddd382cb8649607ace163dda7)