CVE-2018-5117

Priority
Medium
Description
If right-to-left text is used in the addressbar with left-to-right
alignment, it is possible in some circumstances to scroll this text to
spoof the displayed URL. This issue could result in the wrong URL being
displayed as a location, which can mislead users to believe they are on a
different site than the one loaded. This vulnerability affects Thunderbird
< 52.6, Firefox ESR < 52.6, and Firefox < 58.
References
Assigned-to
chrisccoulson
Package
Priority: Low
Upstream:released (52.6.0)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):released (1:52.6.0+build1-0ubuntu0.14.04.1)
Ubuntu 16.04 LTS (Xenial Xerus):released (1:52.6.0+build1-0ubuntu0.16.04.1)
Ubuntu 17.10 (Artful Aardvark):released (1:52.6.0+build1-0ubuntu0.17.10.1)
Ubuntu 18.04 LTS (Bionic Beaver):released (1:52.6.0+build1-0ubuntu1)
Ubuntu 18.10 (Cosmic Cuttlefish):released (1:52.6.0+build1-0ubuntu1)
Package
Upstream:released (58.0)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):released (58.0+build6-0ubuntu0.14.04.1)
Ubuntu 16.04 LTS (Xenial Xerus):released (58.0+build6-0ubuntu0.16.04.1)
Ubuntu 17.10 (Artful Aardvark):released (58.0+build6-0ubuntu0.17.10.1)
Ubuntu 18.04 LTS (Bionic Beaver):released (59.0.1+build1-0ubuntu1)
Ubuntu 18.10 (Cosmic Cuttlefish):released (59.0.1+build1-0ubuntu1)
More Information

Updated: 2018-06-13 17:15:55 UTC (commit 14944)