Bug 1265775 (CVE-2015-4516)

Summary: CVE-2015-4516 Mozilla: JavaScript immutable property enforcement can be bypassed (MFSA 2015-109)
Product: [Other] Security Response Reporter: Prasad Pandit <ppandit>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED NOTABUG QA Contact:
Severity: high Docs Contact:
Priority: high    
Version: unspecifiedCC: cschalle, gecko-bugs-nobody, jhorak, stransky
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2015-09-24 16:31:33 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1261782    

Description Prasad Pandit 2015-09-23 17:47:20 UTC 
Mozilla developer Jeff Walden reported that in Gecko's implementation of
ECMAScript 5 API's enforces non-configurable properties with logic specific to
each API.  Scripts that do not go through these APIs can bypass these
protections and make changes to the immutable properties in violation of
security protections. This could potentially allow for web content to run in a
privileged context leading to arbitrary code execution.

External Reference:

https://www.mozilla.org/en-US/security/advisories/mfsa2015-109/
Comment 1 Martin Prpič 2015-09-24 12:37:13 UTC 
Acknowledgements:

Red Hat would like to thank the Mozilla project for reporting this issue. Upstream acknowledges Jeff Walden as the original reporter.
Comment 2 Martin Prpič 2015-09-24 16:31:33 UTC 
This issue was fixed in Firefox version 41.