CVE-2017-5428 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	High
Remote	Yes
Type	Arbitrary code execution
Description	An integer overflow in createImageBitmap() was reported through the Pwn2Own contest. The fix for this vulnerability disables the experimental extensions to the createImageBitmap API. This function runs in the content sandbox, requiring a second vulnerability to compromise a user's computer.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-219	firefox	52.0-2	52.0.1-1	High	Fixed

Date	Advisory	Group	Package	Severity	Type
18 Mar 2017	ASA-201703-15	AVG-219	firefox	High	arbitrary code execution

References
https://www.mozilla.org/en-US/security/advisories/mfsa2017-08/#CVE-2017-5428 https://bugzilla.mozilla.org/show_bug.cgi?id=1348168