CVE-2016-9896 log

Source
Severity Medium
Remote Yes
Type Arbitrary code execution
Description
Use-after-free while manipulating the navigator object within WebVR. Note: WebVR is not currently enabled by default.
Group Package Affected Fixed Severity Status Ticket
AVG-106 firefox 50.0.2-1 50.1.0-1 Critical Fixed
Date Advisory Group Package Severity Type
14 Dec 2016 ASA-201612-15 AVG-106 firefox Critical multiple issues
References
https://www.mozilla.org/en-US/security/advisories/mfsa2016-94/#CVE-2016-9896