Mozilla Firefox is vulnerable to use-after-free vulnerability. This occurs when manipulating ranges in selections with one node inside a native anonymous tree and one node outside of it resulting a potentially exploitable crash.
rhn.redhat.com/errata/RHSA-2017-0459.html
rhn.redhat.com/errata/RHSA-2017-0461.html
rhn.redhat.com/errata/RHSA-2017-0498.html
www.securityfocus.com/bid/96664
www.securitytracker.com/id/1037966
access.redhat.com/errata/RHSA-2017:0459
access.redhat.com/security/updates/classification/#critical
bugzilla.mozilla.org/show_bug.cgi?id=1340138
security.gentoo.org/glsa/201705-06
security.gentoo.org/glsa/201705-07
www.debian.org/security/2017/dsa-3805
www.debian.org/security/2017/dsa-3832
www.exploit-db.com/exploits/41660/
www.mozilla.org/en-US/security/advisories/mfsa2017-06
www.mozilla.org/security/advisories/mfsa2017-05/
www.mozilla.org/security/advisories/mfsa2017-06/
www.mozilla.org/security/advisories/mfsa2017-07/
www.mozilla.org/security/advisories/mfsa2017-09/