Back to bug 1368873

Who When What Removed Added
Doran Moppert 2016-08-22 02:03:14 UTC Blocks 1348264
Doran Moppert 2016-08-22 02:05:52 UTC Doc Text A flaw in the implemnetation of HTTP proxy authentication in WebKit made it possible for attackers on the local segment who can execute man-in-the-middle attacks between the browser and the proxy server to inject malicious Javascript that will be executed as though it came from an HTTPS site the user is visiting.
Michael Catanzaro 2016-08-22 20:35:28 UTC CC danw
Eric Christensen 2016-08-23 15:16:30 UTC Doc Text A flaw in the implemnetation of HTTP proxy authentication in WebKit made it possible for attackers on the local segment who can execute man-in-the-middle attacks between the browser and the proxy server to inject malicious Javascript that will be executed as though it came from an HTTPS site the user is visiting. A flaw in the implementation of HTTP proxy authentication in WebKit made it possible for attackers on the local segment who can execute man-in-the-middle attacks between the browser and the proxy server to inject malicious Javascript that will be executed as though it came from an HTTPS site the user is visiting.
Christian Horn 2016-08-24 02:37:20 UTC CC chorn
Clifford Perry 2016-08-24 13:08:38 UTC Comment 8 is private 1 0
CC cperry
Christian Horn 2016-08-29 05:32:33 UTC Link ID Red Hat Knowledge Base (Solution) 2549081
Doran Moppert 2016-08-30 00:31:35 UTC Status NEW CLOSED
Resolution --- NOTABUG
Last Closed 2016-08-29 20:31:35 UTC
Product Security DevOps Team 2019-09-29 13:55:15 UTC Whiteboard impact=moderate,public=20160815,reported=20160620,source=cert,cvss3=5.4/CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N,cwe=CWE-270,rhel-5/firefox=notaffected,rhel-6/firefox=notaffected,rhel-7/firefox=notaffected,fedora-all/firefox=notaffected,fedora-all/midori=notaffected,fedora-all/epiphany=notaffected,fedora-all/chromium=notaffected

Back to bug 1368873