firefox is vulnerable to cross-site scripting (XSS). When an inner window is reused, it does not consider the use of document.domain
for cross-origin protections. If pages on different subdomains ever cooperatively use document.domain
, then either page can abuse this to inject script into arbitrary pages on the other subdomain, even those that did not use document.domain
to relax their origin security.
lists.opensuse.org/opensuse-security-announce/2019-07/msg00055.html
lists.opensuse.org/opensuse-security-announce/2019-07/msg00058.html
lists.opensuse.org/opensuse-security-announce/2019-08/msg00073.html
lists.opensuse.org/opensuse-security-announce/2019-10/msg00009.html
lists.opensuse.org/opensuse-security-announce/2019-10/msg00010.html
access.redhat.com/errata/RHSA-2019:1763
access.redhat.com/security/updates/classification/#critical
bugzilla.mozilla.org/show_bug.cgi?id=1552541
lists.debian.org/debian-lts-announce/2019/08/msg00001.html
lists.debian.org/debian-lts-announce/2019/08/msg00002.html
security.gentoo.org/glsa/201908-12
security.gentoo.org/glsa/201908-20
www.mozilla.org/security/advisories/mfsa2019-21/
www.mozilla.org/security/advisories/mfsa2019-22/
www.mozilla.org/security/advisories/mfsa2019-23/