CVE-2017-7794

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 55

Description The issue is related to the sandbox broker in Firefox, which allows files to be truncated even when the sandbox only has read access to the local file system and no write permissions. This can be exploited if the content process is compromised, potentially leading to unauthorized access to protected information, disruption of its integrity, or denial of service. This issue specifically affects Linux systems, with other operating systems not being affected.

Recommendations For versions prior to 55, update to version 55 or later to resolve the issue. As a temporary workaround, consider restricting the sandbox broker's access to sensitive files until a patch is applied.