<www-client/firefox{-bin}-38.1.1 is vulnerable to JS code injection that enables access to local files. Reproducible: Always
Duplicate of bug #556942
Simple version bump of the ebuild works on AMD64.
*** This bug has been marked as a duplicate of bug 556942 ***