CVE-2015-4476

Publication date 24 September 2015

Last updated 24 July 2024

Ubuntu priority

Mozilla Firefox before 41.0 on Android allows user-assisted remote attackers to spoof address-bar attributes by leveraging lack of navigation after a paste of a URL with a nonstandard scheme, as demonstrated by spoofing an SSL attribute.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
firefox	15.04 vivid	Not affected
	14.04 LTS trusty	Not in release
	12.04 LTS precise	Not affected

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.mozilla.org/en-US/security/advisories/mfsa2015-99/
https://www.cve.org/CVERecord?id=CVE-2015-4476