Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:rpm/redhat/firefox@52.0-5?arch=el7_3
purl pkg:rpm/redhat/firefox@52.0-5?arch=el7_3
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.5
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-ngw4-xb6d-gqfm
Aliases:
CVE-2017-5428
An integer overflow in createImageBitmap() was reported through the Pwn2Own contest. The fix for this vulnerability disables the experimental extensions to the createImageBitmap API. This function runs in the content sandbox, requiring a second vulnerability to compromise a user's computer. There are no reported fixed by versions.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T14:31:44.403759+00:00 RedHat Importer Affected by VCID-ngw4-xb6d-gqfm https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5428.json 38.0.0