A WebExtension can request access to local files without the warning prompt stating that the extension will "Access your data for all websites" being displayed to the user. This allows extensions to run content scripts in local pages without permission warnings when a local file is opened. External Reference: https://www.mozilla.org/en-US/security/advisories/mfsa2018-27/#CVE-2018-12397
Acknowledgments: Name: the Mozilla project Upstream: Rob Wu
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2018:3005 https://access.redhat.com/errata/RHSA-2018:3005
This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Via RHSA-2018:3006 https://access.redhat.com/errata/RHSA-2018:3006