From secunia security advisory at $URL: Description: The vulnerability is caused due to an error when processing SVG content nested within a frameset and can be exploited via a specially crafted web page. Successful exploitation allows execution of arbitrary code. Solution: unpatched atm
*** This bug has been marked as a duplicate of bug 387137 ***