CVE-2016-2820

Priority
Description
The Firefox Health Reports (aka FHR or about:healthreport) feature in
Mozilla Firefox before 46.0 does not properly restrict the origin of
events, which makes it easier for remote attackers to modify sharing
preferences by leveraging access to the remote-report IFRAME element.
Assigned-to
chrisccoulson
Package
Upstream:released (46.0)
Ubuntu 14.04 LTS (Trusty Tahr):released (46.0+build5-0ubuntu0.14.04.2)
Ubuntu 16.04 LTS (Xenial Xerus):released (46.0+build5-0ubuntu0.16.04.2)
Package
Priority: Low
Upstream:not-affected
Ubuntu 14.04 LTS (Trusty Tahr):not-affected
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
More Information

Updated: 2019-03-19 12:25:49 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)