CVE-2017-7794 log
Source |
|
Severity | Medium |
Remote | No |
Type | Sandbox escape |
Description | A security issue has been found in Firefox < 55.0. On Linux systems, if the content process is compromised, the sandbox broker will allow files to be truncated even though the sandbox explicitly only has read access to the local file system and no write permissions. |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-375 | firefox | 54.0.1-1 | 55.0-1 | Critical | Fixed |
Date | Advisory | Group | Package | Severity | Type |
---|---|---|---|---|---|
10 Aug 2017 | ASA-201708-3 | AVG-375 | firefox | Critical | multiple issues |
References |
---|
https://www.mozilla.org/en-US/security/advisories/mfsa2017-18/#CVE-2017-7794 https://bugzilla.mozilla.org/show_bug.cgi?id=1374281 |