CVE-2013-1695

Publication date 25 June 2013

Last updated 24 July 2024


Ubuntu priority

Mozilla Firefox before 22.0 does not properly implement certain DocShell inheritance behavior for the sandbox attribute of an IFRAME element, which allows remote attackers to bypass intended access restrictions via a FRAME element within an IFRAME element.

Status

Package Ubuntu Release Status
firefox 13.04 raring
Fixed 22.0+build1-0ubuntu0.13.04.1
12.10 quantal
Fixed 22.0+build1-0ubuntu0.12.10.1
12.04 LTS precise
Fixed 22.0+build1-0ubuntu0.12.04.1
10.04 LTS lucid Ignored end of life

References

Related Ubuntu Security Notices (USN)

Other references