Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 612954 (CVE-2017-5428, MFSA-2017-08) - <www-client/firefox{,-bin}-52.0.1: integer overflow in createImageBitmap()
Summary: <www-client/firefox{,-bin}-52.0.1: integer overflow in createImageBitmap()
Status: RESOLVED FIXED
Alias: CVE-2017-5428, MFSA-2017-08
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal trivial (vote)
Assignee: Gentoo Security
URL: https://www.mozilla.org/en-US/securit...
Whiteboard: ~2 [noglsa/cve]
Keywords:
Depends on:
Blocks:
 
Reported: 2017-03-17 22:15 UTC by Thomas Deutschmann (RETIRED)
Modified: 2017-03-24 05:57 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Thomas Deutschmann (RETIRED) gentoo-dev 2017-03-17 22:15:47 UTC 
An integer overflow in createImageBitmap() was reported through the Pwn2Own contest. The fix for this vulnerability disables the experimental extensions to the createImageBitmap API. This function runs in the content sandbox, requiring a second vulnerability to compromise a user's computer.
Comment 1 Thomas Deutschmann (RETIRED) gentoo-dev 2017-03-17 22:17:35 UTC 
Looks like it doesn't affect our stable 45.x branch.
Comment 2 Teika kazura 2017-03-19 07:59:45 UTC 
www-client/firefox-bin-52.0 is affected. Recorded for searchability.
Comment 3 Ian Stakenvicius (RETIRED) gentoo-dev 2017-03-22 02:59:00 UTC 
www-client/firefox{,-bin}-52.0.1 is in the gentoo repo.  These are not stable candidates so I'm not sure what's left to do here.
Comment 4 Thomas Deutschmann (RETIRED) gentoo-dev 2017-03-23 20:38:53 UTC 
(In reply to Ian Stakenvicius from comment #3)
> www-client/firefox{,-bin}-52.0.1 is in the gentoo repo.  These are not
> stable candidates so I'm not sure what's left to do here.

Was waiting for upstream to confirm previous branches aren't affected.

Repository is clean, all done.