[3.6] firefox-esr: Multiple vulnerabilities (CVE-2017-7826, CVE-2017-7828, CVE-2017-7830)
CVE-2017-7826: Memory safety bugs
CVE-2017-7828: Use-after-free of PressShell while restyling layout
CVE-2017-7830: Cross-origin URL information leak through Resource
Timing API
Fixed In:
Firefox ESR 52.5
References:
https://www.mozilla.org/en-US/security/advisories/mfsa2017-25/\#CVE-2017-7826
(from redmine: issue id 8176, created on 2017-11-17, closed on 2018-02-20)
- Relations:
- parent #8174 (closed)