CVE-2015-4483

Description

Mozilla Firefox before 40.0 allows man-in-the-middle attackers to bypass a mixed-content protection mechanism via a feed: URL in a POST request.

• How can I get the fixes?
• What do statuses mean?

References

• MITRE
• NVD
• Launchpad
• Debian

Other references

• https://www.mozilla.org/en-US/security/advisories/mfsa2015-86/
• https://bugzilla.mozilla.org/show_bug.cgi?id=1148732
• http://www.mozilla.org/security/announce/2015/mfsa2015-86.html
• https://www.cve.org/CVERecord?id=CVE-2015-4483