Bug 1518566 (CVE-2017-7843)

Summary: CVE-2017-7843 Mozilla: Web worker in Private Browsing mode can write IndexedDB data
Product: [Other] Security Response Reporter: Huzaifa S. Sidhpurwala <huzaifas>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED ERRATA QA Contact:
Severity: high Docs Contact:
Priority: high    
Version: unspecifiedCC: jhorak, security-response-team, stransky
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
A privacy flaw was discovered in Firefox. In Private Browsing mode, a web worker could write persistent data to IndexedDB, which was not cleared when exiting and would persist across multiple sessions. A malicious website could exploit the flaw to bypass private-browsing protections and uniquely fingerprint visitors.
Story Points: ---
Clone Of: Environment:
Last Closed: 2017-12-05 06:08:55 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1518567, 1518568, 1518569, 1518570    
Bug Blocks: 1518574    

Description Huzaifa S. Sidhpurwala 2017-11-29 08:32:30 UTC
When Private Browsing mode is used, it is possible for a web worker to write persistent data to IndexedDB and fingerprint a user uniquely. IndexedDB should not be available in Private Browsing mode and this stored data will persist across multiple private browsing mode sessions because it is not cleared when exiting.

Comment 2 Huzaifa S. Sidhpurwala 2017-11-29 08:32:41 UTC
External References:

https://www.mozilla.org/en-US/security/advisories/mfsa2017-27/#CVE-2017-7843

Comment 4 Doran Moppert 2017-11-30 03:08:57 UTC
Acknowledgments:

Name: the Mozilla project
Upstream: Konark

Comment 5 errata-xmlrpc 2017-12-05 05:45:46 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6
  Red Hat Enterprise Linux 7

Via RHSA-2017:3382 https://access.redhat.com/errata/RHSA-2017:3382