CVE-2017-5386 log

Source
Severity Medium
Remote Yes
Type Privilege escalation
Description
WebExtension scripts in Firefox < 51 can use the data: protocol to affect pages loaded by other web extensions using this protocol, leading to potential data disclosure or privilege escalation in affected extensions.
Group Package Affected Fixed Severity Status Ticket
AVG-157 firefox 50.1.0-1 51.0.1-1 Critical Fixed
Date Advisory Group Package Severity Description
29 Jan 2017 ASA-201701-39 AVG-157 firefox Critical multiple issues
References
https://www.mozilla.org/en-US/security/advisories/mfsa2017-01/#CVE-2017-5386
https://bugzilla.mozilla.org/show_bug.cgi?id=1319070