Back to bug 1404359
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Huzaifa S. Sidhpurwala | 2016-12-13 16:27:38 UTC | CC | security-response-team | |
| Huzaifa S. Sidhpurwala | 2016-12-13 16:29:04 UTC | Blocks | 1403856 | |
| Huzaifa S. Sidhpurwala | 2016-12-14 04:25:39 UTC | Group | security, qe_staff | |
| Summary | EMBARGOED CVE-2016-9902 Mozilla: Pocket extension does not validate the origin of events (MFSA 2016-94, MFSA 2016-95) | CVE-2016-9902 Mozilla: Pocket extension does not validate the origin of events (MFSA 2016-94, MFSA 2016-95) | ||
| Whiteboard | impact=moderate,public=no,reported=20161213,source=mozilla,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N,rhel-5/firefox=affected,rhel-6/firefox=affected,rhel-7/firefox=affected,rhel-5/thunderbird=notaffected,rhel-6/thunderbird=notaffected,rhel-7/thunderbird=notaffected | impact=moderate,public=20161214,reported=20161213,source=mozilla,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N,rhel-5/firefox=affected,rhel-6/firefox=affected,rhel-7/firefox=affected,rhel-5/thunderbird=notaffected,rhel-6/thunderbird=notaffected,rhel-7/thunderbird=notaffected | ||
| Huzaifa S. Sidhpurwala | 2016-12-22 06:17:39 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2016-12-22 01:17:39 UTC | |||
| Product Security DevOps Team | 2019-09-29 14:02:45 UTC | Whiteboard | impact=moderate,public=20161214,reported=20161213,source=mozilla,cvss2=4.3/AV:N/AC:M/Au:N/C:P/I:N/A:N,cvss3=5.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N,rhel-5/firefox=affected,rhel-6/firefox=affected,rhel-7/firefox=affected,rhel-5/thunderbird=notaffected,rhel-6/thunderbird=notaffected,rhel-7/thunderbird=notaffected |
Back to bug 1404359