Your submission was sent successfully! Close

CVE-2015-2743

Published: 05 July 2015

PDF.js in Mozilla Firefox before 39.0 and Firefox ESR 31.x before 31.8 and 38.x before 38.1 enables excessive privileges for internal Workers, which might allow remote attackers to execute arbitrary code by leveraging a Same Origin Policy bypass.

Priority

Medium

Status

Package Release Status
firefox
Launchpad, Ubuntu, Debian
Upstream
Released (39.0)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was released [39.0+build5-0ubuntu0.14.04.1])