Under certain circumstances the `fetch()` API can return transient local copies of resources that were sent with a `no-store` or `no-cache` cache header instead of downloading a copy from the network as it should. This can result in previously stored, locally cached data of a website being accessible to users if they share a common profile while browsing. External Reference: https://www.mozilla.org/en-US/security/advisories/mfsa2018-07/#CVE-2018-5131
Acknowledgments: Name: the Mozilla project Upstream: Ben Kelly
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Via RHSA-2018:0526 https://access.redhat.com/errata/RHSA-2018:0526
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2018:0527 https://access.redhat.com/errata/RHSA-2018:0527