If websocket data is sent with mixed text and binary in a single message, the binary data can be corrupted. This can result in an out-of-bounds read with the read memory sent to the originating server in response. External Reference: https://www.mozilla.org/en-US/security/advisories/mfsa2018-11/#CVE-2018-5153
Acknowledgments: Name: the Mozilla project Upstream: Dennis Fuchs