CVE-2017-5428 log

Source
Severity High
Remote Yes
Type Arbitrary code execution
Description
An integer overflow in createImageBitmap() was reported through the Pwn2Own contest. The fix for this vulnerability disables the experimental extensions to the createImageBitmap API. This function runs in the content sandbox, requiring a second vulnerability to compromise a user's computer.
Group Package Affected Fixed Severity Status Ticket
AVG-219 firefox 52.0-2 52.0.1-1 High Fixed
Date Advisory Group Package Severity Description
18 Mar 2017 ASA-201703-15 AVG-219 firefox High arbitrary code execution
References
https://www.mozilla.org/en-US/security/advisories/mfsa2017-08/#CVE-2017-5428
https://bugzilla.mozilla.org/show_bug.cgi?id=1348168