A vulnerability exists in WebRTC where malicious web content can use probing techniques on the `getUserMedia` API using constraints to reveal device properties of cameras on the system without triggering a user prompt or notification. This allows for the potential fingerprinting of users. External Reference: https://www.mozilla.org/en-US/security/advisories/mfsa2019-26/#CVE-2019-11749
Acknowledgments: Name: the Mozilla project Upstream: Andreas Pehrson
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2019:2663 https://access.redhat.com/errata/RHSA-2019:2663
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2019-11749