Back to bug 1330285

Who When What Removed Added
Siddharth Sharma 2016-04-25 19:04:23 UTC CC security-response-team
Red Hat Bugzilla 2016-04-25 19:04:23 UTC Doc Type --- Bug Fix
Siddharth Sharma 2016-04-25 19:04:33 UTC Blocks 1306172
Siddharth Sharma 2016-04-26 09:01:06 UTC Summary EMBARGOED CVE-2016-2817 Mozilla: API for web extensions allows for navigation to javascript: URLs without additional permissions (MFSA2016-46) EMBARGOED CVE-2016-2817 Mozilla: API for web extensions allows for navigation to javascript: URLs without additional permissions (MFSA 2016-46)
Siddharth Sharma 2016-04-26 16:46:18 UTC Summary EMBARGOED CVE-2016-2817 Mozilla: API for web extensions allows for navigation to javascript: URLs without additional permissions (MFSA 2016-46) EMBARGOED CVE-2016-2817 Mozilla: Elevation of privilege with chrome.tabs.update API in web extensions (MFSA 2016-46)
Siddharth Sharma 2016-04-26 17:21:14 UTC Whiteboard impact=moderate,public=no,reported=20160425,source=mozilla,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,rhel-5/firefox=notaffected,rhel-6/firefox=notaffected,rhel-7/firefox=notaffected impact=moderate,public=20160426,reported=20160425,source=mozilla,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,rhel-5/firefox=notaffected,rhel-6/firefox=notaffected,rhel-7/firefox=notaffected
Siddharth Sharma 2016-04-26 17:21:16 UTC Summary EMBARGOED CVE-2016-2817 Mozilla: Elevation of privilege with chrome.tabs.update API in web extensions (MFSA 2016-46) CVE-2016-2817 Mozilla: Elevation of privilege with chrome.tabs.update API in web extensions (MFSA 2016-46)
Siddharth Sharma 2016-04-26 17:21:19 UTC Group security, qe_staff
Huzaifa S. Sidhpurwala 2016-05-09 04:52:28 UTC Status NEW CLOSED
Resolution --- NOTABUG
Last Closed 2016-05-09 00:52:28 UTC
Product Security DevOps Team 2019-09-29 13:48:22 UTC Whiteboard impact=moderate,public=20160426,reported=20160425,source=mozilla,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:P/A:N,rhel-5/firefox=notaffected,rhel-6/firefox=notaffected,rhel-7/firefox=notaffected

Back to bug 1330285